|
|
|
|
|
|
by openasocket
246 days ago
|
|
|
> By design, other processes cannot inspect what environment variables are running in a container. That’s not exactly true. If a process is running in a container, and someone is running bash outside of that container, reading that processes environment variables is as simple as “cat /proc/<pid>/environ”. If you meant that someone in one container cannot inspect the environment variables of a process running in a different container, that’s more true. That said, containers should not be considered a security boundary in the same way a hypervisor is. |
|
|