From 08f059d2d5d649132a4e68fa01c54d0e2e47ee2b Mon Sep 17 00:00:00 2001
From: konsthol <konsthol@konsthol.eu>
Date: Thu, 7 Sep 2023 04:26:24 +0300
Subject: [PATCH] it is hump day _^_

---
 harden | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/harden b/harden
index e31d5d2..6c51baf 100755
--- a/harden
+++ b/harden
@@ -389,6 +389,9 @@ EOF
     # For portainer (and watchtower), we will be using the --runtime=runc option to run it with runc because
     # it doesn't work with runsc as it is not exposing the docker socket to the container
     # but containers downloaded from it will still use runsc
+    # Note: If a new install of Portainer is not configured within 5 minutes, 
+    # it shuts down internally for security reasons but that does not matter since
+    # we reboot after the script is done.
     sudo -E runuser - secdep -c 'docker run --runtime=runc -d -p 8000:8000 -p 9443:9443 --name=portainer --restart=always -v /run/user/$UID/docker.sock:/var/run/docker.sock -v portainer_data:/data portainer/portainer-ce'
     # Watchtower is a docker image that will automatically update all the other docker images
     # that are installed and running so we don't have to do it manually