Y
Hacker News
new
|
ask
|
show
|
jobs
by
rapidlua
1271 days ago
> Docker only uses namespaces and cgroups.
How is that not isolation?
1 comments
kaba0
1270 days ago
The docker daemon has basically root over your system, so any escape can end very badly.
link