1개 답변
- 최신
- 최다 투표
- 가장 많은 댓글
0
Yes, it is possible to run your container with an arbitrary user. In your Dockerfile, you should create an user, and use the USER directive to change the default user in your container.
FROM microsoft/windowsservercore # Create Windows user in the container RUN net user /add patrick # Set it for subsequent commands USER patrick
By the way, if it's a Fargate type, it's Serverless, but without customizing it and using the permissions of the user at the time of container execution
Since it is serverless, you cannot manage the Docker's host machine (NOT the container) and I don't think you need to. The security responsibility lies on AWS, not you.
답변함 8달 전
관련 콘텐츠
AWS 공식업데이트됨 9달 전
What I'm concerned about is that if you set an existing ECS container to the instance type and run it, the application will run with root user privileges on that container unless you specify a user. In the case of Fargate type, I wonder which user's permissions will be executed without customization.