Timeline for Can a root user inside a Docker/LXC break the security of the whole system?
Current License: CC BY-SA 4.0
2 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Apr 5, 2023 at 12:25 | comment | added | Rory McCune | It's worth noting that whilst user namespaces, as designed, should improve security, there have been some Linux kernel vulnerabilities which were more easily exploited when it was enabled. e.g. willsroot.io/2022/01/cve-2022-0185.html which needed CAP_SYS_ADMIN at host level or in a user namespace. | |
| Apr 3, 2023 at 21:16 | history | answered | root-aj | CC BY-SA 4.0 |