undefined | Better HN

0 pointswswin1d ago0 comments

Containers prevent this kind of info stealing greatly, only explicitly provided creds would be leaked.

0 comments

Containers can mean many things, if you mean plain docker default configured containers then no, they are a packaging mechanism not safe environment by themselves.

wswinOP1d ago

They don't have access to the host filesystem nor environment variables and this attack wouldn't work.

jFriedensreich1d ago

Just because this attack example did not contain container escape exploits does not mean this is safe. Its better than nothing but nothing that will save us.

1 more reply

j / k navigate · click thread line to collapse

0 comments

jFriedensreich1d ago

Containers can mean many things, if you mean plain docker default configured containers then no, they are a packaging mechanism not safe environment by themselves.

wswinOP1d ago

They don't have access to the host filesystem nor environment variables and this attack wouldn't work.

jFriedensreich1d ago

Just because this attack example did not contain container escape exploits does not mean this is safe. Its better than nothing but nothing that will save us.

1 more reply

j / k navigate · click thread line to collapse