I wanted to get the community's opinion on non-root for v3. There appears to be a decent guide for v2 (see GitHub - wollomatic/traefik-hardened: hardened rootless Traefik v2 deployment without mounting the Docker socket into the Traefik container) what the thoughts around the same metholodogy but for v3? Does anyone foresee any issues/potential pitfalls or any recommendations? Thanks!
Using non-root is probably a bit more complex to set up, create new user up front on host. But in general it should work without a problem, as long as permissions for files are correct (acme.json, optional dynamic config file).
I prefer to create my own Docker socket proxy to not rely on an image by an unknown source, check my recent post.