Y
Hacker News
new
|
ask
|
show
|
jobs
by
bogomipz
2039 days ago
Yes it is. The Docker socket - /var/run/docker.sock is owned by root and so anyone that has access to it effectively has root on that host. User namespace mitigate this to some degree.