undefined | Better HN

Better HN

Top Best Ask Show New Jobs

0 pointsNeutronBoy11y ago0 comments

Good thing the host you run Docker on never needs to be patched or rebooted I guess?

0 pointsNeutronBoy11y ago0 comments

Good thing the host you run Docker on never needs to be patched or rebooted I guess?

0 comments

5 comments · 1 top-level

hueving11y ago· 4 in thread

Yes, docker is immune to vulnerabilities because containers.

__bjoernd11y ago

If the kernel you are running on is vulnerable, it can be attacked and the attacker can circumvent any container isolation.

If the hypervisor (Xen!) running underneath your container-Linux is vulnerable, the attacker can get access to your virtualized OS and circumvent any container isolation.

Xylakant11y ago

your sarcasm detector may need recalibration.

kjs311y ago

What a bright, shiny future we live in where "Docker!" is the answer to all problems.

Bdiem11y ago

Not immune to human error:

https://medium.com/@fun_cuddles/docker-breakout-exploit-anal...

j / k navigate · click thread line to collapse