Comment by subsection1h
18 days ago
Exactly. Also, it's not clear to me if some of these people think that containers are a sandbox or they simply don't care about security.
For anyone out there who thinks that containers are a sandbox...
There's a reason why gVisor exists:
https://news.ycombinator.com/item?id=45045190
There's a reason why Qubes OS doesn't use containers.
No comments yet
Contribute on Hacker News ↗