Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
oofbey
21 days ago
|
parent
|
context
|
favorite
| on:
I almost got hacked by a 'job interview'
A docker container isn’t as bulletproof as a VM but it would certainly block this kind of attack. They’re super fast and easy to spin up.
goodpoint
21 days ago
[–]
It would not block many other attacks.
oofbey
21 days ago
|
parent
[–]
Can you give some examples? I think of my containers as decently good security boundaries, so I'd like to know what I'm missing.
kwar13
21 days ago
|
root
|
parent
|
next
[–]
Containers share resources at the OS level, VMs don't. That's the crucial difference.
goodpoint
21 days ago
|
root
|
parent
|
prev
[–]
Containers share the whole kernel (and more) so there's a massive attack surface.
Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
