[samba] Unmaintained image with security flaws

[runningman84]

Details

Helm chart name and version:
samba

Container name and tag:
dperson/samba

The docker image suffers from security issues like dperson/samba#407.

I have't found a better docker image yet, this looks promising but there are k8s issues:
https://github.com/crazy-max/docker-samba

I think a special docker image and a configmap for the smb.conf and secrets for the users might be a better longterm solution.

[bjw-s]

I'd be fine with switching it out for a more maintained image.

Could you be more specific about the k8s issues with the alternative you provided?
It seems that it can be configured with ENV vars and a yaml file (can be provided by either configMap or Secret). That would make it work pretty well I'd think?

[runningman84]

I have seen this issue but I haven't double checked it:
crazy-max/docker-samba#12

[bjw-s]

This person has mounted a configMap to the /data folder. But configMaps are always read-only. If the configuration has to be mounted to a path inside /data, ideally a subPath should have been used.

[runningman84]

/data should be emptydir and the configfile a subpath

[bjw-s]

Sounds about right 👍🏻