Page MenuHomeDevCentral
Create Task
Maniphest T107

Reenable SELinux for Docker on Dwellers
Closed, ResolvedPublic
Actions

Description

The Discourse Docker image fails on the following postgres.template.yml or XXX instruction: - exec: mkdir -p /shared/postgres_run.

The SELinux context doesn't allow the directory creation. I've also an issue with the lack of volumes in the story.

Docker has been restarted without SELinux support, as containers strong separation isn't an high priority on the Dwellers installation.

An enquiry should be made to the best way to improve the Discourse Docker images to comply with SELinux and use volumes.

Related Objects
Search...

StatusSubtypeAssignedTask
Restricted Maniphest Task
 ResolvedderecksonT107 Reenable SELinux for Docker on Dwellers

Event Timeline

dereckson created this task.Nov 16 2014, 17:52
dereckson raised the priority of this task from to Low.
dereckson updated the task description. (Show Details)
dereckson added projects: Forum, Servers.
dereckson changed the visibility from "All Users" to "Public (No Login Required)".
dereckson updated the task description. (Show Details)
dereckson added a project: security.
dereckson added a subscriber: dereckson.
dereckson closed this task as Resolved.Nov 17 2014, 01:36
dereckson claimed this task.

The solution to run Docker without SELinux is dismissed.

Docker has been successfully restarted with SELinux support again.

dereckson moved this task from Backlog to Deployed on the Forum board.Apr 1 2015, 19:26
Nasqueron DevCentral · If it had been much bigger the moon would have had a core of ice. · Powered by Phabricator