zlacker

[parent] [thread] 2 comments
1. mystif+(OP)[view] [source] 2026-02-03 20:24:11
`useradd` doesn't restrict network access.
replies(2): >>kaffek+m1 >>eikenb+BJ
2. kaffek+m1[view] [source] 2026-02-03 20:30:26
>>mystif+(OP)
I have used a separate user, but lately I have been using rootless podman containers instead for this reason. But I know too little about container escapes. So I am thinking about a combination.

Would a podman container run by a separate user provide any benefit over the two by themselves?

3. eikenb+BJ[view] [source] 2026-02-04 00:28:51
>>mystif+(OP)
Without any credentials does network access matter?
[go to top]