Y
Hacker News
new
|
ask
|
show
|
jobs
by
whackedspinach
4336 days ago
Paul,
How are you securing the Docker containers since Docker hasn't yet added user namespaces?
1 comments
hackerews
4336 days ago
Containers open and close with every script run and then they're deleted. Never reopened.
link
whackedspinach
4336 days ago
Do you run the scripts as a specific user inside the container then? I was under the impression that running untrusted code in Docker as UID 0 was not yet safe.
link