From 59e4f29687ccac5f30ae78c5892983221e6be783 Mon Sep 17 00:00:00 2001
From: luc <luc@debianluc>
Date: Tue, 31 May 2016 09:50:37 +0200
Subject: [PATCH] Set process as non-root with "USER" instruction.

Thus there is no need to get sudo package.
---
 docker/Dockerfile | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/docker/Dockerfile b/docker/Dockerfile
index 9545e81de..bc9b4c953 100644
--- a/docker/Dockerfile
+++ b/docker/Dockerfile
@@ -7,8 +7,7 @@ FROM java:latest
 RUN apt-get update && apt-get install -yq \
 	ant \
 	git \
-	curl \
-	sudo
+	curl
 	
 # trace java version
 RUN java -version
@@ -50,5 +49,8 @@ EXPOSE 8090
 # Set data volume : yacy data and configuration will persist aven after container stop or destruction
 VOLUME ["/opt/yacy_search_server/DATA"]
 
-# Start yacy as non-root process in debug mode (-d) to display console logs and to wait for yacy process
-CMD sudo -u yacy sh /opt/yacy_search_server/startYACY.sh -d
+# Next commands run as yacy as non-root user for improved security
+USER yacy
+
+# Start yacy in debug mode (-d) to display console logs and to wait for yacy process
+CMD sh /opt/yacy_search_server/startYACY.sh -d