Docker - rootless mode

[Tech Master]

Hi Wazuh users, have you ever done a docker deployment in rootless mode?

It would be interesting to have a tutorial in the official Wazuh documentation. For me, Docker is flexible, practical and effective, obviously hadenizing it for use in a production environment (on-premise or Cloud).

[Md. Nazmur Sakib]

Hello Tech Master!

Thanks for using wazuh!

Currently, there is no official documentation available for Wazuh docker deployment in rootless mode.

While it is feasible to utilize Docker containers without root privileges, that doesn’t necessarily mean it’s rootless throughout. This is due to the presence of additional components in the stack that necessitate root privileges for their operation.

It is recommended to use the root user since you could have issues if you do not do it this way. 

If you want to use custom users, you must have permission to change shared system files and directories. Although this is possible, we always strongly recommend using the root user to avoid problems.

Rootless Docker deployment is indeed an interesting and security-conscious approach. We appreciate your suggestion for an official Wazuh documentation on this topic. We're always looking to provide valuable resources for our users, and your input is invaluable in shaping the content we create. However, I welcome you to create a suggestion for our development team here for feature consideration.

Below I attach documentation on Wazuh docker deployment:

https://documentation.wazuh.com/current/deployment-options/docker/index.html

I hope this helps, let me know if you need anything else.

Regards,

[Tech Master]

Many thanks.

"This is due to the presence of additional components in the stack that necessitate root privileges for their operation.

It is recommended to use the root user since you could have issues if you do not do it this way. "

is enough :-)