This is a general question regarding the official docker image.
I set up a Nextcloud instance using the official image and docker-compose. Everything works fine and I’m very thankful for this easy method of setting up Nextcloud!
I read the page entitled " Hardening and security guidance" in the docs and it says:
It is highly recommended to place your data directory outside of the Web root (i.e. outside of /var/www).
Interestingly, the official docker image does it like that by default- My question now is: Is this even secure or do I have to change it or something (which is not so easy due to the directory permission within the container)? Keep in mind that I’m talking about the location within the container (which is exposed to the public (in my case) using a traefik reverse-proxy).