Hacker News new | past | comments | ask | show | jobs | submit login

> considering on most systems anything under a uid can debug something else under a uid

Right? Couldn't only security hardened distros like SELinux take advantage of this?

Or I suppose Docker GUI apps?




Docker isn't a security layer


Security isn't the only thing Docker offers, but yes Docker on Linux is a security layer.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: