it is hump day _^_
This commit is contained in:
3
harden
3
harden
@@ -389,6 +389,9 @@ EOF
|
||||
# For portainer (and watchtower), we will be using the --runtime=runc option to run it with runc because
|
||||
# it doesn't work with runsc as it is not exposing the docker socket to the container
|
||||
# but containers downloaded from it will still use runsc
|
||||
# Note: If a new install of Portainer is not configured within 5 minutes,
|
||||
# it shuts down internally for security reasons but that does not matter since
|
||||
# we reboot after the script is done.
|
||||
sudo -E runuser - secdep -c 'docker run --runtime=runc -d -p 8000:8000 -p 9443:9443 --name=portainer --restart=always -v /run/user/$UID/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer-ce'
|
||||
# Watchtower is a docker image that will automatically update all the other docker images
|
||||
# that are installed and running so we don't have to do it manually
|
||||
|
||||
Reference in New Issue
Block a user