x0rg
/
9x0rg.com
1
0
Fork 0
Code Releases Activity

improvement

This commit is contained in:
Wonderfall 2022-04-03 02:17:28 +02:00
parent 343d644782
commit 4749183c57
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
content/posts/docker-hardening.md
View File

@ -130,7 +130,7 @@ If you already run your containers unprivileged without root, your container wil
# - SETUID
# - SETGID
```
Never use the `--privileged` unless you really need to: a privileged container is given access to almost all capabilities, kernel features and devices.
Never use the `--privileged` option unless you really need to: a privileged container is given access to almost all capabilities, kernel features and devices.
## Other security features
MACs and seccomp are robust tools that may vastly improve container security.