Hello Hadmut, thanks for the report; I've been unwilling to try Docker
myself for this reason. I read the source code everything I run that
doesn't come from the Ubuntu archive, and don't see how that's remotely
possible with Docker images.
It's probably best to discuss options with Docker upstream; however, I
suspect most people who care about security have moved to running such
workloads with Kubernetes instead. (I also don't know enough about
Kubernetes to know if that's a sufficiently strong isolation
environment. It's not VMs, and it's certainly not separate machines.)
Thanks
** Information type changed from Private Security to Public Security
** Changed in: docker.io (Ubuntu)
Status: New => Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1923148
Title:
docker.io opening root access when user is in docker group
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1923148/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
