container_security_book

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
container_security_book [2020/01/04 14:18] – [Observations] rpjdaycontainer_security_book [2020/01/18 21:45] (current) – [CHECK OUT] rpjday
Line 15: Line 15:
   * rootfull versus rootless images   * rootfull versus rootless images
   * too much setuid stuff, need to assume a lot of that   * too much setuid stuff, need to assume a lot of that
 +  * emphasize ephemeral images
 +
 +===== CHECK OUT =====
 +
 +  * "sidecar" containers
 +  * Docker daemon needs to run as root, podman has no daemon
 +  * "runc" and JSON bundle
  • container_security_book.1578147519.txt.gz
  • Last modified: 2020/01/04 14:18
  • by rpjday