You must log in or # to comment.
Also the plot of Hollow Knight.
You would think you’d already have problems if someone’s managed to compromise one or more of your containers without you knowing though whether they can get the host or not
Could be serving users malware or silently sucking up all the sensitive data the container sees
What if anything do people do about anti virus in containers?
Wouldn’t rootless containers have reduced the impact of these vulnerabilities? I’ll happily continue using rootless podman for simple tasks
Docker can be run in rootless mode[1]. Ideally that should be the standard mode unless you have specific requirements not satisfied by rootless mode.
Dang that’s scary. The user would need ssh access to the container for this to work, right?