container_security_book
Overview
Observations
Is there a market for a book on underlying container technology?
Works with context outside of Docker? podman? cgroups v2?
“system containers” such as LXC and LXD?
technologies:
cgroups
namespaces
chroot
scanning images
rootfull versus rootless images
too much setuid stuff, need to assume a lot of that
emphasize ephemeral images
CHECK OUT
container_security_book.txt · Last modified: 2020/01/18 21:45 by rpjday