I'm not sure how much of a security concern this one is, at least for the kinds of things I care about with respect to containers.
I want my containers to be able to run work without other containers spying on them (already hard thanks to timing attacks).
This IPC channel only works if both containers are collaborating together. I don't think you can use it to spy on my container if my container isn't actively participating.
I want my containers to be able to run work without other containers spying on them (already hard thanks to timing attacks).
This IPC channel only works if both containers are collaborating together. I don't think you can use it to spy on my container if my container isn't actively participating.