Hacker News new | past | comments | ask | show | jobs | submit login

Almost all modern Linux distros are pretty reasonable Security out of the box, it’s the user-specified configuration that causes the issues.



Part of the problem is when distros "become secure in the default install" by having nothing installed and nothing running.


Last time I could checked you could install stuff during the initial deployment.

Not sure what your point is though, a default install of Linux is far better than a default install of windows.


If the server does nothing but run Docker containers, maybe that’s not so bad.


But what if one doesn't trust the security of docker?


Then you have bigger issues to worry about.


At least switch to podman, which has a better isolation story.


Doesn’t Docker rewrite firewall rules?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: