Y
Hacker News
new
|
ask
|
show
|
jobs
by
otterley
2070 days ago
Better to never have root privileges anywhere in the container. Entry points can be overridden and never running as root at all greatly reduces the attack surface.