diff --git a/apps/k8s01/tor/deployment.yaml b/apps/k8s01/tor/deployment.yaml
index 07909a5607422f7fcc13b1e673a2cc1903a432d7..888c93c0f864889b2004a494a52c4b72b0dc4ded 100644
--- a/apps/k8s01/tor/deployment.yaml
+++ b/apps/k8s01/tor/deployment.yaml
@@ -4,6 +4,7 @@ metadata:
   labels:
     app.kubernetes.io/name: tor
   name: tor
+  namespace: tor
 spec:
   replicas: 2
   selector:
@@ -14,6 +15,10 @@ spec:
       labels:
         app.kubernetes.io/name: tor
     spec:
+      securityContext:
+        runAsUser: 101
+        runAsGroup: 101
+        fsGroup: 101
       topologySpreadConstraints:
         - maxSkew: 1
           topologyKey: kubernetes.io/hostname
@@ -43,9 +48,20 @@ spec:
             cpu: "1"
             memory: 512Mi
         securityContext:
-          runAsUser: 101
-          runAsGroup: 101
           readOnlyRootFilesystem: true
           runAsNonRoot: true
           allowPrivilegeEscalation: false
+          capabilities:
+            drop:
+              - ALL
+          seccompProfile:
+            type: RuntimeDefault
+        volumeMounts:
+          - name: home
+            mountPath: /var/lib/tor/
+      volumes:
+        - name: home
+          emptyDir:
+            medium: Memory
+            sizeLimit: 128Mi