Docker is not rootless. Is only safe as long as the container (or those web devs) doesn’t use nsenter or anything similar to get root access outside of it ;)
Indeed. Also, I am concerned about self-hosting enthusiasts that install docker (without the advance rootless mode) and blindly run containers. Sometimes these containers are even made by third parties, independent of the app developers. Unfortunately, the supply chain there is up for grabs…
If you think docker/container are for security, you’re doing it wrong.
deleted by creator
Docker is not rootless. Is only safe as long as the container (or those web devs) doesn’t use
nsenteror anything similar to get root access outside of it ;)deleted by creator
Ah, my bad “again”… should have mentioned that there’s the advance configuration option that 1% of the geeks do
deleted by creator
Indeed. Also, I am concerned about self-hosting enthusiasts that install docker (without the advance rootless mode) and blindly run containers. Sometimes these containers are even made by third parties, independent of the app developers. Unfortunately, the supply chain there is up for grabs…
deleted by creator