OpenClaw with Docker. Is it safe?
from MoonlitSanguine@lemmy.zip to selfhosted@lemmy.world on 08 Feb 15:42
https://lemmy.zip/post/58712611

I’m looking to run OpenClaw on my homelab. Has anyone successfully got it running with Docker? I followed the Docker instructions on their website, got Ollama running with a lightweight model, but couldn’t get the openclaw dashboard working.

I was hoping to have it everyday, look through the hundreds of job alert emails I get, and output a list of jobs for me to apply for. It’ll compare my resume to the listing, check the age of the listing, etc.

I know it’s highly susceptible to prompt injection, but if I have it in a container, with a email made specifically for OpenClaw I’m hoping it will be relatively safe?

#selfhosted

threaded - newest

seang96@spgrn.com on 08 Feb 15:54 next collapse

It appears the image runs as a non root user at least… You can drop unnecessary capabilities oneuptime.com/blog/post/…/view

You can also add firewall redfrictions to container to only allow it to connect to services you want to limit injection attacks.

This would help, but still could be open to a lot of security problems I’d imagine.

Lele@lemmy.ml on 08 Feb 15:57 collapse

To work it needs local access (like scan your emails), otherwise what’s the point of it… I suggest to read this blog post

macsparky.com/…/i-built-the-perfect-ai-robot-then…

LiveLM@lemmy.zip on 08 Feb 18:22 collapse

I thought I was being smart by running it on an isolated Mac mini with custom safeguards. I created secret passphrases, limited access, tried to lock it down. Then I woke up at 2 AM wondering if my secret passphrase was sitting in plain text in the robot’s logs. It was.

Yup. Forget running this.