Containers

A container can cause a kernel panic and bring down the whole host. What preventive actions can you apply to avoid this specific situation?

Difficulty: unrated

Source: bregman-arie/devops-exercises by Arie Bregman

Answer

  • Install only the necessary packages in the container
    • Set volumes and container's filesystem to read only
    • DO NOT run containers with --privilged flag