Skip to content
This repository has been archived by the owner on Sep 18, 2024. It is now read-only.

Commit

Permalink
Fix #8: Limit container runtime permissions in compose files
Browse files Browse the repository at this point in the history
Signed-off-by: Timo Reichl <[email protected]>
  • Loading branch information
Timo Reichl committed Jun 6, 2022
1 parent d202377 commit d36e1f8
Show file tree
Hide file tree
Showing 3 changed files with 42 additions and 0 deletions.
12 changes: 12 additions & 0 deletions compose/docker-compose.csgo.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
version: '3.7'

networks:
srcds:
driver: bridge
driver_opts:
com.docker.network.bridge.enable_icc: 0

services:
csgo:
image: ghcr.io/thetredev/steamcmd:csgo-latest
Expand All @@ -17,6 +23,12 @@ services:
#- "27015:27015/tcp"
volumes:
- ./csgo:/var/lib/steamcmd/server
networks:
- srcds
security_opt:
- no-new-privileges
tmpfs:
- /tmp
ulimits:
nofile:
soft: 2048
Expand Down
12 changes: 12 additions & 0 deletions compose/docker-compose.css.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
version: '3.7'

networks:
srcds:
driver: bridge
driver_opts:
com.docker.network.bridge.enable_icc: 0

services:
css:
image: ghcr.io/thetredev/steamcmd:css-latest
Expand All @@ -17,6 +23,12 @@ services:
#- "27015:27015/tcp"
volumes:
- ./css:/var/lib/steamcmd/server
networks:
- srcds
security_opt:
- no-new-privileges
tmpfs:
- /tmp
ulimits:
nofile:
soft: 2048
Expand Down
18 changes: 18 additions & 0 deletions compose/docker-compose.multiple.yml
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
version: '3.7'

networks:
srcds:
driver: bridge
driver_opts:
com.docker.network.bridge.enable_icc: 0

services:
css:
image: ghcr.io/thetredev/steamcmd:css-latest
Expand All @@ -17,6 +23,12 @@ services:
#- "27015:27015/tcp"
volumes:
- ./css:/var/lib/steamcmd/server
networks:
- srcds
security_opt:
- no-new-privileges
tmpfs:
- /tmp
ulimits:
nofile:
soft: 2048
Expand Down Expand Up @@ -46,6 +58,12 @@ services:
#- "27016:27016/tcp"
volumes:
- ./csgo:/var/lib/steamcmd/server
networks:
- srcds
security_opt:
- no-new-privileges
tmpfs:
- /tmp
ulimits:
nofile:
soft: 2048
Expand Down

0 comments on commit d36e1f8

Please sign in to comment.