docker-nss icon indicating copy to clipboard operation
docker-nss copied to clipboard

Published 20 hours ago verified publisher icon danni

dockerip

Open arjanvandervelde opened this issue 10 years ago • 2 comments

Hello Danielle! We've been running this for quite some time now with a small modification that makes it possible to use the nsswitch without having to be a member of the docker group. It works by compiling a simple executable that is installed with setgid permissions and calls docker inspect (by absolute path). Sorry for messing with the formatting.

-- Arjan

arjanvandervelde avatar Nov 28 '15 21:11 arjanvandervelde

Why does someone not in the docker group need to access a docker host?

danni avatar Jan 18 '16 23:01 danni

we have users ssh into dockers. they'd do something like ssh [email protected]. we do not want these users in the docker group per se because that practically gives them the entire host.

arjanvandervelde avatar Jan 20 '16 02:01 arjanvandervelde