|
|
|
|
|
|
by LinuxBender
3962 days ago
|
|
|
Docker is just a container and not a sandbox. There are no controls in the kernel to prevent something from leaving the container unless you enable restrictions outside of docker such as SELinux. There is a lot of development around SELinux+Docker right now. |
|
|