| ▲ | danudey 5 hours ago | |
I mean, one answer is that docker configuration on your local dev machine can go one of two ways: 1. You have to use `sudo` for every `docker ...` command; or 2. You add your user to the `docker` group and now anything that can run as your user can use docker to read or write any file on your system, making docker into the best local privilege escalation option out there. | ||
| ▲ | WhyNotHugo 2 hours ago | parent [-] | |
You can also run docker in rootless mode. | ||