container_security_book

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
container_security_book [2020/01/04 10:27] – [Observations] rpjdaycontainer_security_book [2020/01/18 21:45] (current) – [CHECK OUT] rpjday
Line 12: Line 12:
     * namespaces     * namespaces
     * chroot     * chroot
 +  * scanning images
 +  * rootfull versus rootless images
 +  * too much setuid stuff, need to assume a lot of that
 +  * emphasize ephemeral images
 +
 +===== CHECK OUT =====
 +
 +  * "sidecar" containers
 +  * Docker daemon needs to run as root, podman has no daemon
 +  * "runc" and JSON bundle
  • container_security_book.1578133641.txt.gz
  • Last modified: 2020/01/04 10:27
  • by rpjday