Fairly in-depth. I'm surprised though, at the generally positive tone around containers/docker. No mention of the the current widespread practice of containers running as root. Nothing about the relative lack of protection against local kernel exploits escaping the container, etc.
Was expecting something a little more balanced on the topic.
Note that it doesn't say that containers are secure. It just implies that they can be used to help with security practices like principle of least privilege for processes.
In other words, containers are better than running normal processes for security. Not better than running a VM.
Was expecting something a little more balanced on the topic.