Tomster/Vaultwarden-Docker-Compose
1
0
Fork 0
mirror of https://github.com/tommytran732/Vaultwarden-Docker-Compose synced 2024-09-20 00:34:42 -04:00
Code

Run postgres unprivileged

Browse Source 
Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2022-09-11 17:46:50 -04:00
parent 50f860913c
commit 3cef449bea
No known key found for this signature in database
GPG Key ID: 060B29EB996BD9F2
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
docker-compose.yml
View File

@ -53,15 +53,14 @@ services:
restart: unless-stopped restart: unless-stopped
networks: networks:
- vaultwarden - vaultwarden
user: "70:70"
read_only: true
tmpfs:
- /var/run/postgresql:size=50M,mode=0770,uid=70,gid=70,noexec,nosuid,nodev
security_opt: security_opt:
- no-new-privileges:true - no-new-privileges:true
cap_drop: cap_drop:
- ALL - ALL
cap_add:
- CHOWN
- DAC_READ_SEARCH
- SETGID
- SETUID
volumes: volumes:
postgres: postgres: