@x_cli One question about the proper use of containers (*not* VM, only containers). Is it reasonable to give root access in a container to someone who is not root on the host? I always thought the answer was No and this is how I manage containers. The report mention "public cloud service". Are there services where tenants have root access to a container?

@Keltounet @x_cli ? I don't see the relationship. Let me ask again: are there *services* (not software) where *tenants* (not the company managing the service) have root access to a container?

Follow

@bortzmeyer
Basically, OVH VPS (which are containers) grant root priv on the guest, for instance.
@Keltounet

@x_cli @bortzmeyer is KVM impacted? At least one VPS provider with root access uses KVM for their machines (Vultr).

@bortzmeyer @x_cli Right, it is virtualisation, not containers.

One gets confused sometimes with the linux world :)

Sign in to participate in the conversation
Infosec Exchange

A Mastodon instance for info/cyber security-minded people.