Just a quick general question around security and docker volumes.
What is to stop admins of one application mounting a volume containing sensitive data from another application when there are multiple applications with different supporting teams running on the same host?
I’m from a traditional infrastructure background where a server or application admin wouldn’t have any opportunity to mount e.g. SAN data belonging to another application into my VM or physical server, so i’ve been surprised to find very little info around this in the Docker world.
Thanks in advance,