https://blog.qife122.com/tags/docker%E9%80%83%E9%80%B8/ Recent content in Docker逃逸 on 办公AI智能小助手 Hugo zh-cn qife Fri, 19 Sep 2025 13:16:07 +0800 https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90docker%E5%AE%B9%E5%99%A8%E9%80%83%E9%80%B8%E6%8A%80%E6%9C%AFcgroups%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8%E4%B8%8E%E9%98%B2%E5%BE%A1/ Fri, 19 Sep 2025 13:16:07 +0800 https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90docker%E5%AE%B9%E5%99%A8%E9%80%83%E9%80%B8%E6%8A%80%E6%9C%AFcgroups%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8%E4%B8%8E%E9%98%B2%E5%BE%A1/ <h1 id="理解docker容器逃逸---trail-of-bits博客">理解Docker容器逃逸 - Trail of Bits博客</h1> <p>Trail of Bits近期完成了对Kubernetes的安全评估，包括其与Docker的交互。Felix Wilhelm发布的概念验证（PoC）“容器逃逸”推文引发了我们的兴趣，因为我们曾进行类似研究，并好奇此PoC对Kubernetes的影响。</p> https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90docker%E5%AE%B9%E5%99%A8%E9%80%83%E9%80%B8%E6%8A%80%E6%9C%AF%E5%88%A9%E7%94%A8cgroups%E6%BC%8F%E6%B4%9E%E5%AE%9E%E7%8E%B0%E4%B8%BB%E6%9C%BA%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87/ Wed, 10 Sep 2025 12:23:45 +0800 https://blog.qife122.com/p/%E6%B7%B1%E5%85%A5%E8%A7%A3%E6%9E%90docker%E5%AE%B9%E5%99%A8%E9%80%83%E9%80%B8%E6%8A%80%E6%9C%AF%E5%88%A9%E7%94%A8cgroups%E6%BC%8F%E6%B4%9E%E5%AE%9E%E7%8E%B0%E4%B8%BB%E6%9C%BA%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87/ <h1 id="理解docker容器逃逸---trail-of-bits博客">理解Docker容器逃逸 - Trail of Bits博客</h1> <p>Trail of Bits最近完成了对Kubernetes的安全评估，包括其与Docker的交互。Felix Wilhelm最近在推特上分享的概念验证（PoC）“容器逃逸”引起了我们的兴趣，因为我们进行了类似的研究，并好奇这个PoC如何影响Kubernetes。</p>