alt Hacker NewsAnother is running containers in read-only mode, assuming they support this configuration... will minimize a lot of potential attack surface.
Another is running containers in read-only mode, assuming they support this configuration... will minimize a lot of potential attack surface.
Never looked into this. I would expect the majority of images would fail in this configuration. Or am I unduly pessimistic?