| ▲ | Ajedi32 4 hours ago |
| That's why adding your user account to the docker group is a separate step that explicitly does not happen as part of the installation: https://docs.docker.com/engine/install/linux-postinstall/ > Warning > The docker group grants root-level privileges to the user. For details on how this impacts security in your system, see Docker Daemon Attack Surface. |
|
| ▲ | HeWhoLurksLate 2 hours ago | parent | next [-] |
| wait so just being lazy and using sudo on Docker commands instead of figuring things out actually means I'm being safer? awesome. |
| |
| ▲ | SpaceNoodled an hour ago | parent [-] | | This feels like using Docker is just inherently unsafe. | | |
| ▲ | dymk an hour ago | parent | next [-] | | That’s what rootless docker is for | |
| ▲ | itintheory an hour ago | parent | prev [-] | | This feels like using sudo is just inherently unsafe. | | |
| ▲ | alsetmusic an hour ago | parent [-] | | This feels like using a computer is inherently unsafe. On the plus side, once we outlaw them we'll shut down the ability for conspiratorial thinking to spread easily and the world will slowly heal from the last couple of decades (the previous one in particular). Hooray! We're finally doing something about the harms of social media. Smash your computer today! |
|
|
|
|
| ▲ | amelius 3 hours ago | parent | prev [-] |
| And containers were supposed to make things safer ... Huge design mistake if you ask me. |
| |
| ▲ | twelvedogs an hour ago | parent | next [-] | | i don't see how it's a design mistake, linux allows more footguns in general to not decrease utility. Allowing you to manually give root prompt access (with warnings!) to a non-root user is one of them. you can also just not run docker as root and not add normal users to the docker group | |
| ▲ | halfcat 2 hours ago | parent | prev [-] | | Containers were never a security boundary |
|
