"Protect the Docker daemon socket" this article may be unsafe?

alanwake (Alanwake) August 2, 2016, 11:08am 1

as the article describe: all those certificates are signed by one CA.
if one docker host server controled by a hacker. the server-cert.pem,server-key.pem would be used for docker client certificate, then docker client can connect any docker host server.

am i right? or i miss something?

Topic		Replies	Views
Unable to secure daemon General	4	2399	November 19, 2016
Replace Expired Cert for Docker Daemon Socket General	0	1085	May 18, 2020
Is there a security hole in adding TLS security to docker port? General	1	1324	January 20, 2021
How to make docker aware of my company's MITM SSL Cert CA Docker Desktop	0	1480	May 30, 2016
Does a docker socket proxy improve security? General security	4	7816	June 3, 2023

"Protect the Docker daemon socket" this article may be unsafe?

Related topics