Encore: The secrets behind Docker.
CyberWire Daily
00:00
Docker Containers
In Docker containers, by default, you get limited capabilities. An attacker that had both access on the host and the container itself could have done anything he wants. So in this case, it didn't have the ability to escape a container. But because of how Docker managed file permissions at the version I checked, any user, unprivileged user on the host, not a container on the host,. Could have access to files that are saved inside the container.
Play episode from 05:37
Transcript
