Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Containers have a pretty poor security record. Frankly I'd feel more safe with a non-containerised service running under a non-root user than with a service running as root in a container, not that I'd feel particularly safe with either.


Containers != Docker.

Podman supports rootless containers for quite a while, without a daemon, and it is compatible with Kubernetes.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: