Browse code
Merge pull request #29485 from ericcurtin/remove-prompt-add-docker-group
Don't encourage adding user to docker group
(cherry picked from commit 06e3812b6e50f63b13b9a6eefb012da83f6283ab)
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
Vincent Demeester authored on 2017/01/13 02:28:16Showing 1 changed files
| ... | ... |
@@ -78,6 +78,12 @@ echo_docker_as_nonroot() {
|
| 78 | 78 |
|
| 79 | 79 |
Remember that you will have to log out and back in for this to take effect! |
| 80 | 80 |
|
| 81 |
+ WARNING: Adding a user to the "docker" group will grant the ability to run |
|
| 82 |
+ containers which can be used to obtain root privileges on the |
|
| 83 |
+ docker host. |
|
| 84 |
+ Refer to https://docs.docker.com/engine/security/security/#docker-daemon-attack-surface |
|
| 85 |
+ for more information. |
|
| 86 |
+ |
|
| 81 | 87 |
EOF |
| 82 | 88 |
} |
| 83 | 89 |
|