The secrets behind Docker. [Research Saturday]
CyberWire Daily
00:00
Docker Containers - Is This a Fundamental Flaw in Lenox?
In lennox, if you have a giddy b, with the capability of a sispitres, you can attach yourself as a debager to any process. This means that even if you are not rot but you have certain capabilities, you can do certain vileged tasks. So ow does this affect docker containers? Ok, so in docker containers, by default, you get limited capabilities. But because of how doctor managed permissions at the vergion that i checked, any user, unprivileged user on the host nor the container on the host, could have access to files that are saved inside the container. In theory, an attacker that had both access on the ost and
Play episode from 04:44
Transcript
