Hacker News new | ask | show | jobs
by amelius 1049 days ago
Also side-channel attacks.

E.g. if one user downloads a container, and then for another user it is already in the cache, this gives the other user information about the first user.
1 comments
Fire-Dragon-DoL 1049 days ago
Isn't this pointless, since if the other user has access to docker, they basically have root access to the machine?
link
amelius 1049 days ago
I don't think users need to have root access to use Docker.
link
Fire-Dragon-DoL 1049 days ago
No, but unless they run in rootless mode, they can mount any directory and write on it as root
link
seba_dos1 1048 days ago
They don't, but if you have given them access to Docker then it's just as if you had given them access to root.
link