@ -1,5 +1,11 @@
## 3.4.0 (April 2, 2021)
- **change** Docker image to run as non-root user `65534` by default, limits attack surface for security and gives OpenShift compatibility
## 3.3.3 (April 1, 2021)
@ -12,4 +12,10 @@ RUN apk --no-cache add openssl ca-certificates && \
cp /usr/share/zoneinfo/Europe/Berlin /etc/localtime && \
apk del .build-deps
# Follow the principle of least privilege: run as unprivileged user.
# Running as non-root enables running this image in platforms like OpenShift
# that do not allow images running as root.
# User ID 65534 is usually user 'nobody'.
ENTRYPOINT ["dyndnsd", "/etc/dyndnsd/config.yml"]