Evolving Container Security With Linux User Namespaces
The Netflix TechBlog
DECEMBER 23, 2020
We already use the default settings offered by Docker, such as AppArmor, and seccomp, but by adding user namespaces, we can achieve a superior defense-in-depth security model. These CVEs did not affect our infrastructure because we were using user namespaces for all of our containers.
Let's personalize your content