I don't want to give too much capability ! :)
Context
While reading the docker-compose.yml, I see the need of some capability, NET_ADMIN and SYS_PTRACE.
Ok for NET_ADMIN (needed for fail2ban) But why SYS_PTRACE ?
Expected Behavior
A container with not too much capability :)
Possible Fix
Only Documentation, and maybe an explanation of each capability ?
Thanks !
I don't want to give too much capability ! :)
Context
While reading the docker-compose.yml, I see the need of some capability, NET_ADMIN and SYS_PTRACE.
Ok for NET_ADMIN (needed for fail2ban) But why SYS_PTRACE ?
Expected Behavior
A container with not too much capability :)
Possible Fix
Only Documentation, and maybe an explanation of each capability ?
Thanks !