Y
Hacker News
new
|
ask
|
show
|
jobs
by
Wool2662
869 days ago
Frankly if a user can run the docker command he is basically root anyways. That's why you do not add random users to the docker group.
1 comments
westurner
869 days ago
Podman (and Docker) do rootless containers, which would limit privilege escalation from this vuln, too IIUC
Does container-selinux limit this container escape vulnerability?
link
Does container-selinux limit this container escape vulnerability?