Comment by goodpoint 5 months ago It would not block many other attacks. 3 comments goodpoint Reply oofbey 5 months ago Can you give some examples? I think of my containers as decently good security boundaries, so I'd like to know what I'm missing. kwar13 5 months ago Containers share resources at the OS level, VMs don't. That's the crucial difference. goodpoint 5 months ago Containers share the whole kernel (and more) so there's a massive attack surface.
oofbey 5 months ago Can you give some examples? I think of my containers as decently good security boundaries, so I'd like to know what I'm missing. kwar13 5 months ago Containers share resources at the OS level, VMs don't. That's the crucial difference. goodpoint 5 months ago Containers share the whole kernel (and more) so there's a massive attack surface.
kwar13 5 months ago Containers share resources at the OS level, VMs don't. That's the crucial difference.
goodpoint 5 months ago Containers share the whole kernel (and more) so there's a massive attack surface.
Can you give some examples? I think of my containers as decently good security boundaries, so I'd like to know what I'm missing.
Containers share resources at the OS level, VMs don't. That's the crucial difference.
Containers share the whole kernel (and more) so there's a massive attack surface.