ipp-usb icon indicating copy to clipboard operation
ipp-usb copied to clipboard
verified publisher icon OpenPrinting

Introduces immutability to IPP-USB OCI image

Open im0vishal opened this issue 9 months ago • 0 comments

Enhanced Security, Persistence, and Documentation for IPP-USB

This PR improves the security, reliability, and usability of the ipp-usb container by refining access controls, ensuring persistent storage, and updating documentation for clarity.

Key Improvements:

  • Runs as a non-root user (_daemon_) to minimize security risks.
  • Restricts write access to system directories (/usr, /etc) to maintain immutability.
  • Uses separate Docker volumes for configuration and state files to ensure persistence across restarts.
  • Proper USB device access with necessary mounts and permissions for seamless printer discovery.
  • Updated documentation to provide clear guidelines on storage, logging, and secure usage.

These changes enhance security, maintainability, and ensure ipp-usb operates reliably in a containerized environment.

im0vishal avatar Mar 19 '25 19:03 im0vishal