openscap icon indicating copy to clipboard operation
openscap copied to clipboard
verified publisher icon OpenSCAP

oscap-podman requires root and cannot check non-root containers

Open belonesox opened this issue 2 years ago • 0 comments

oscap-podman requires root and cannot check non-root containers.

Description of Problem:

  • We have to check non-root podman container.
  • oscap-podman requires root. «This script cannot run in rootless mode».
  • sudo oscap-podman <CONTAINER-NAME> <args> of course does not see target container from non-root user.

Bug or Feature? Is there any workaround to check non-root container without installing oscap inside?

OpenSCAP Version:

openscap-1.3.8-1.fc37.x86_64
openscap-scanner-1.3.8-1.fc37.x86_64
openscap-utils-1.3.8-1.fc37.x86_64

Operating System & Version:

  • Fedora Core FC37

belonesox avatar Sep 02 '23 21:09 belonesox