GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity

Update README.md

Browse source 
document mounting volumes to container as read only.

Signed-off-by: Paul Czarkowski <username.taken@gmail.com>
This commit is contained in:
Paul Czarkowski 2015-05-28 15:30:42 -05:00
parent 34c784dcbf
commit e5a5d1fc9c
1 changed files with 4 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
README.md
View file

@ -14,8 +14,8 @@ The easiest way to run your hosts against the CIS Docker 1.6 benchmark is by run
```
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock \
-v /usr/lib/systemd:/usr/lib/systemd -v /etc:/etc --label docker-bench-security \
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock:ro \
-v /usr/lib/systemd:/usr/lib/systemd:ro -v /etc:/etc:ro --label docker-bench-security \
diogomonica/docker-bench-security
```
@ -30,8 +30,8 @@ If you wish to build and run this container yourself, you can follow the followi
```
git clone https://github.com/diogomonica/docker-bench-security.git
cd docker-bench-security; docker build -t docker-bench-security .
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock \
-v /usr/lib/systemd:/usr/lib/systemd -v /etc:/etc --label security-benchmark \
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock:ro \
-v /usr/lib/systemd:/usr/lib/systemd:ro -v /etc:/etc:ro --label security-benchmark \
docker-bench-security
```