Researchers at the RWTH Aachen University in Germany published a study revealing that tens of thousands of container images hosted on Docker Hub contain confidential secrets, exposing software, online platforms, and users to a massive attack surface.
We build all our image layers in house from a base nginx or node image. We’re moving to [scratch[(https://hub.docker.com/_/scratch/) soon to even eliminate going to Docker hub at all.
For home stuff, I don’t super care. I’ll just update as necessary and if something happens and someone gets in, it’s just my stuff.
Bad admins gonna bad. shrug
We build all our image layers in house from a base nginx or node image. We’re moving to [scratch[(https://hub.docker.com/_/scratch/) soon to even eliminate going to Docker hub at all.
For home stuff, I don’t super care. I’ll just update as necessary and if something happens and someone gets in, it’s just my stuff.
Fixed link for the lazy: scratch
What will you be replacing docker with?
Docker will still be around but each image will be built and deployed to our local registry. Docker hub is being taken out of the equation.
This is the way.
UBI micro from Red Hat is awesome… Just saying. And it’s free 😂
fuck redhat