Docker – WindowsTechs.com

Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?

Posted on November 1, 2024 by Frank Fricke

I have a vague feeling that there is a wide spread security problem which goes unnoticed. I’m trying to find out how to check the level of relevance and awareness out there or how to maybe raise it.
Situation:
When using GitLab CI with the… Continue reading Does it matter (and go widely unnoticed) that GitLab CI+docker-executor produces world-writable files, or do "we" need to raise awareness for that?→

Should I house my organization’s root CA certificate in public github repostiory?

Posted on October 28, 2024 by rajendra

We have a public repository of a software that uses Docker container. Any thing that runs within the organization sees certificates signed by our org’s root CA. For the container to run properly within our org, the root CA certificate need… Continue reading Should I house my organization’s root CA certificate in public github repostiory?→

DockerSpy: Search for images on Docker Hub, extract sensitive information

Posted on September 11, 2024 by Mirko Zorz

DockerSpy scans Docker Hub for images and retrieves sensitive information, including authentication secrets, private keys, and other confidential data. “DockerSpy was created to address the growing concern of sensitive data leaks within Docker im… Continue reading DockerSpy: Search for images on Docker Hub, extract sensitive information→

Putting a Pi in a Container

Posted on August 31, 2024 by Bryan Cockfield

Docker and other containerization applications have changed a lot about the way that developers create new software as well as how they maintain virtual machines. Not only does containerization reduce …read more Continue reading Putting a Pi in a Container→

RustScan: Open-source port scanner

Posted on August 7, 2024 by Help Net Security

RustScan is an open-source port scanner designed for speed and versatility. It combines a sleek interface with the power to adapt and improve over time. With RustScan’s Adaptive Learning, the tool continually optimizes its performance, making it … Continue reading RustScan: Open-source port scanner→

Does libc security vulnerabilities in a python web application are actually exploitable in a private cloud environment

Posted on August 6, 2024 by Brogrammer

We use a python web framework and gunicorn on top of docker to power a web application with frontend in a private cloud that can be accessed by a private network. Our security tools reports a lot of libc vulnerabilities for the debian base… Continue reading Does libc security vulnerabilities in a python web application are actually exploitable in a private cloud environment→

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

Posted on July 25, 2024 by Zeljka Zorz

A critical-severity Docker Engine vulnerability (CVE-2024-41110) may be exploited by attackers to bypass authorization plugins (AuthZ) via specially crafted API request, allowing them to perform unauthorized actions, including privilege escalation. Abo… Continue reading Docker fixes critical auth bypass flaw, again (CVE-2024-41110)→

Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018

Posted on July 24, 2024 by Ryan Naraine

The vulnerability, tagged as CVE-2024-41110 with a CVSS severity score of 10/10, was originally found and fixed in 2018.
The post Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018 appeared first on SecurityWeek.
Continue reading Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018→

Docker-Powered Remote Gaming with Games on Whales

Posted on July 13, 2024 by Bryan Cockfield

Cloud gaming services allow even relatively meager devices like set top boxes and cheap Chromebooks play the latest and greatest titles. It’s not perfect of course — latency is the …read more Continue reading Docker-Powered Remote Gaming with Games on Whales→

dump a pod from kubernetes [migrated]

Posted on July 8, 2024 by Barttttt

I have a docker image running in Kubernetes that I suspect to contain a malicious code, unfortunately I can’t download it directly from the docker hub as there is a restriction on where it can be pulled.
Is there a way to dump this contain… Continue reading dump a pod from kubernetes [migrated]→