undefined | Better HN

0 pointsthe_duke7y ago0 comments

I almost never had to run a privileged container, and I avoid it whenever possible.

As far as I have seen, privileged container use is rare. What lead you to the assumption that it isn't?

0 comments

It should also be noted that bind-mounting docker.sock is equivalent (or much worse -- it's easier to exploit at least) to using privileged containers, and an exceptionally large number of people do this (you see it in many blog posts and project installation scripts).

j / k navigate · click thread line to collapse

0 comments

cyphar7y ago

j / k navigate · click thread line to collapse