The whole thing is just astounding. C# host process as root, iptable network rules in the container instead of outside of it, servers not validating client certificates. My oh my.
How any of this made it past security and production review is beyond me. Unless there wasn’t any.
The whole thing is just astounding. C# host process as root, iptable network rules in the container instead of outside of it, servers not validating client certificates. My oh my.
How any of this made it past security and production review is beyond me. Unless there wasn’t any.