diff --git a/Dockerfile b/Dockerfile index d3c0d4c..51be480 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,6 @@ -FROM ghcr.io/linuxserver/baseimage-selkies:debianbookworm +# syntax=docker/dockerfile:1 + +FROM ghcr.io/linuxserver/baseimage-selkies:debiantrixie # set version label ARG BUILD_DATE @@ -42,5 +44,5 @@ RUN \ COPY /root / # ports and volumes -EXPOSE 3000 +EXPOSE 3001 VOLUME /config diff --git a/Dockerfile.aarch64 b/Dockerfile.aarch64 index 9360855..7af074a 100644 --- a/Dockerfile.aarch64 +++ b/Dockerfile.aarch64 @@ -1,4 +1,6 @@ -FROM ghcr.io/linuxserver/baseimage-selkies:arm64v8-debianbookworm +# syntax=docker/dockerfile:1 + +FROM ghcr.io/linuxserver/baseimage-selkies:arm64v8-debiantrixie # set version label ARG BUILD_DATE @@ -42,5 +44,5 @@ RUN \ COPY /root / # ports and volumes -EXPOSE 3000 +EXPOSE 3001 VOLUME /config diff --git a/README.md b/README.md index 63d91cd..fc24a3d 100644 --- a/README.md +++ b/README.md @@ -78,6 +78,8 @@ By default, this container has no authentication. The optional `CUSTOM_USER` and The web interface includes a terminal with passwordless `sudo` access. Any user with access to the GUI can gain root control within the container, install arbitrary software, and probe your local network. +While not generally recommended, certain legacy environments specifically those with older hardware or outdated Linux distributions may require the deactivation of the standard seccomp profile to get containerized desktop software to run. This can be achieved by utilizing the `--security-opt seccomp=unconfined` parameter. It is critical to use this option only when absolutely necessary as it disables a key security layer of Docker, elevating the potential for container escape vulnerabilities. + ### Options in all Selkies-based GUI containers This container is based on [Docker Baseimage Selkies](https://github.com/linuxserver/docker-baseimage-selkies), which provides the following environment variables and run configurations to customize its functionality. @@ -230,6 +232,7 @@ services: ports: - 3000:3000 - 3001:3001 + shm_size: "1gb" restart: unless-stopped ``` @@ -245,6 +248,7 @@ docker run -d \ -p 3001:3001 \ -v /path/to/config:/config \ -v /path/to/data:/data \ + --shm-size="1gb" \ --restart unless-stopped \ lscr.io/linuxserver/doublecommander:latest ``` @@ -262,6 +266,7 @@ Containers are configured using parameters passed at runtime (such as those abov | `-e TZ=Etc/UTC` | specify a timezone to use, see this [list](https://en.wikipedia.org/wiki/List_of_tz_database_time_zones#List). | | `-v /config` | Users home directory in the container, stores program settings. | | `-v /data` | Host data directories, mount as many as needed. | +| `--shm-size=` | Recommended for all desktop images. | ## Environment variables from files (Docker secrets) @@ -425,6 +430,7 @@ Once registered you can define the dockerfile to use with `-f Dockerfile.aarch64 ## Versions +* **22.09.25:** - Rebase to Debian Trixie. * **28.07.25:** - Fix CPU usage bug by disabling fake udev. * **12.07.25:** - Rebase to Selkies, HTTPS IS NOW REQUIRED. * **05.07.24:** - Add rar, 7zip, ace, and arj archive support. diff --git a/readme-vars.yml b/readme-vars.yml index bd68fa4..dfec137 100644 --- a/readme-vars.yml +++ b/readme-vars.yml @@ -17,9 +17,6 @@ development_versions: false # container parameters common_param_env_vars_enabled: true param_container_name: "{{ project_name }}" -param_usage_include_env: true -param_env_vars: - - {env_var: "TZ", env_value: "Europe/London", desc: "Specify a timezone to use EG Europe/London."} param_usage_include_vols: true param_volumes: - {vol_path: "/config", vol_host_path: "/path/to/config", desc: "Users home directory in the container, stores program settings."} @@ -28,6 +25,8 @@ param_usage_include_ports: true param_ports: - {external_port: "3000", internal_port: "3000", port_desc: "Double Commander desktop gui HTTP, must be proxied."} - {external_port: "3001", internal_port: "3001", port_desc: "Double Commander desktop gui HTTPS."} +custom_params: + - {name: "shm-size", name_compose: "shm_size", value: "1gb", desc: "Recommended for all desktop images."} # Selkies blurb settings selkies_blurb: true show_nvidia: true @@ -107,6 +106,7 @@ init_diagram: | "doublecommander:latest" <- Base Images # changelog changelogs: + - {date: "22.09.25:", desc: "Rebase to Debian Trixie."} - {date: "28.07.25:", desc: "Fix CPU usage bug by disabling fake udev."} - {date: "12.07.25:", desc: "Rebase to Selkies, HTTPS IS NOW REQUIRED."} - {date: "05.07.24:", desc: "Add rar, 7zip, ace, and arj archive support."}