zlacker

[parent] [thread] 5 comments
1. nottor+(OP)[view] [source] 2026-01-26 21:37:49
... as root?
replies(2): >>zahlma+e >>tintor+W9
2. zahlma+e[view] [source] 2026-01-26 21:39:05
>>nottor+(OP)
Given that it's within a container on a remote server, does that matter?
replies(1): >>acedTr+d3
◧◩
3. acedTr+d3[view] [source] [discussion] 2026-01-26 21:55:09
>>zahlma+e
I mean i hope its more hardened than JUST a container given how many container escapes there are.
replies(1): >>jchw+rb
4. tintor+W9[view] [source] 2026-01-26 22:32:19
>>nottor+(OP)
No root. `pip` and `npm install` don't require it.

You can not use `sudo apt install` inside it.

They use gVisor, and other container isolation mechanisms: https://ryan.govost.es/2025/openai-code-interpreter/

replies(1): >>bandra+pI
◧◩◪
5. jchw+rb[view] [source] [discussion] 2026-01-26 22:39:07
>>acedTr+d3
Apparently, they are using gVisor, which when applied properly, should make a pretty good isolation primitive.
◧◩
6. bandra+pI[view] [source] [discussion] 2026-01-27 02:18:19
>>tintor+W9
OTOH if you have apt, you have arbitrary shell commands (hooray dpkg-hooks!)

Golden years for cybersecurity people

[go to top]