github maxfield-allison/dnsweaver v1.1.4
on GitHub

latest releases: v1.5.0, v1.4.6, v1.4.5...
one month ago

Fixed

  • Docker socket permission denied on first run: The image runs as a non-root
    user (UID/GID 1000), but the host's docker group GID is almost never 1000
    (typically 999 on Debian/Ubuntu, varies on other distros), so mounting
    /var/run/docker.sock failed with permission denied out of the box.
    Added a small entrypoint script (docker/entrypoint.sh) that detects the
    socket's GID at runtime, adds the dnsweaver user to a group with that GID,
    then drops privileges via su-exec before exec'ing the binary. The standard
    compose example now works without group_add. K8s-only deployments and
    socket-proxy setups skip the logic entirely (no socket mounted = no-op).
    Closes #79.

Changed

  • Runtime image now includes su-exec (~20KB) for the entrypoint privilege
    drop. Container briefly starts as root to perform GID detection, then exec's
    the binary as the unprivileged dnsweaver user.

Docker Images

docker pull ghcr.io/maxfield-allison/dnsweaver:v1.1.4
docker pull docker.io/maxamill/dnsweaver:v1.1.4
Check out latest releases or
releases around maxfield-allison/dnsweaver v1.1.4

Don't miss a new dnsweaver release

NewReleases is sending notifications on new releases.

Get notifications