It's not quite that simple, an insecure or vulnerable hypervisor can actually ma... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

smcleod on Feb 25, 2015 | parent | context | favorite | on: RancherOS: An OS for Docker Containers

It's not quite that simple, an insecure or vulnerable hypervisor can actually make it easier to exploit a system. (Note: I'm not suggesting that running Docker as PID1 or similar is a good idea)

lclarkmichalek on Feb 25, 2015 [–]

I think it's fair to say that it's easier to secure a hypervisor than it is to secure a Docker daemon. Lord knows we've had a lot more experience securing hypervisors.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact