Playing with some different ways of running docker containers without using root continuously.
- Dockerfile USER directive
- gosu in entry-point script
- Manipulating users and groups during container build
- Read-only mounts of
/etc/passwd
- Using nss_wrapper to fake local users and/or remote hosts
- Manipulating filesystem permissions on container start
- Dockerfile Best Practices
- Dockerfile Reference
- docker-compose File Reference
- Official Library Image: Postgres
- handles privileges particularly well as official images go