diff --git a/apps/k8s01/dns/dns.yaml b/apps/k8s01/dns/dns.yaml
index f4c29f82e90a5a5f55d24a4745352629d9b6a1c4..587e7ff1963750f73764e646f188907a01192165 100644
--- a/apps/k8s01/dns/dns.yaml
+++ b/apps/k8s01/dns/dns.yaml
@@ -50,6 +50,7 @@ spec:
               mountPath: "/etc/pki/dnsproxy"
               readOnly: true
           securityContext:
+            allowPrivilegeEscalation: false
             capabilities:
               drop:
                 - ALL
@@ -60,8 +61,9 @@ spec:
             secretName: ingress-dns-tls
             optional: false
       securityContext:
-        allowPrivilegeEscalation: false
         runAsNonRoot: true
+        runAsUser: 1000
+        runAsGroup: 1000
         seccompProfile:
           type: RuntimeDefault
         sysctls: