0
0
Dockerdevops~5 mins

Running containers as non-root in Docker - Cheat Sheet & Quick Revision

Choose your learning style9 modes available
LearnWhyDeepVisualTryChallengeProjectRecallTime
Recall & Review
beginner
Why should you avoid running Docker containers as root?
Running containers as root can create security risks because if the container is compromised, the attacker may gain root access to the host system. Running as non-root limits these risks.
Click to reveal answer
beginner
How do you specify a non-root user in a Dockerfile?
Use the USER instruction followed by the username or UID. For example, USER appuser switches to the user appuser inside the container.
Click to reveal answer
beginner
What command can you use to check the current user inside a running container?
Run whoami inside the container shell to see the current user name.
Click to reveal answer
intermediate
What is the purpose of the --user flag in docker run?
The --user flag lets you run the container process as a specific user or UID without changing the Dockerfile. For example, docker run --user 1001 myimage runs as user ID 1001.
Click to reveal answer
intermediate
What should you do if your application needs write access to a directory but runs as non-root?
Make sure the directory permissions allow the non-root user to write. You can set ownership or permissions on the directory during image build or at runtime.
Click to reveal answer
What is the default user inside a Docker container if not specified?
Aappuser
Bnobody
Cdocker
Droot
Which Dockerfile instruction sets the user for running commands inside the container?
AUSER
BENTRYPOINT
CCMD
DRUN
How can you run a container as a non-root user without modifying the Dockerfile?
AUse the --user flag with docker run
BChange the ENTRYPOINT
CUse docker exec
DModify the image layers
What happens if a non-root user tries to write to a directory without permission inside a container?
AThe write succeeds
BPermission denied error occurs
CThe container crashes
DDocker automatically grants permission
Why is running containers as non-root considered a best practice?
AIt uses less memory
BIt improves container startup speed
CIt reduces security risks
DIt enables automatic updates
Explain how to run a Docker container as a non-root user and why it is important.
Think about user permissions and container security.
You got /3 concepts.
    Describe what steps you would take if your containerized app needs to write files but runs as a non-root user.
    Focus on file system permissions and user identity.
    You got /3 concepts.