Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Docker security #70

Closed
m-1-k-3 opened this issue Mar 12, 2021 · 1 comment
Closed

Docker security #70

m-1-k-3 opened this issue Mar 12, 2021 · 1 comment
Labels
docker docker related things help wanted Extra attention is needed

Comments

@m-1-k-3
Copy link
Member

m-1-k-3 commented Mar 12, 2021

With the pull request from @Anemosx we now have full Docker support in emba.

As discussed here #66 (comment) this also includes new security issues. Nevertheless we see a massive improvement compared to running emba on your host.

Let's use this Issue to discuss further steps.
@m-1-k-3 m-1-k-3 added help wanted Extra attention is needed docker docker related things labels Mar 12, 2021
@m-1-k-3
Copy link
Member Author

m-1-k-3 commented Aug 27, 2021

As far as I can see all of our security issues are based on the fact that we currently need the docker images from fact-extractor and cwe-checker. So, if we install them locally on our Docker image or on our Kali host with our installer we do not need to expose the following critical files/directories:
- /var/run/docker.sock:/var/run/docker.sock
- /tmp/:/tmp/
As far as I can see we could close this issue with local install of the mentioned tools.

This was referenced Aug 27, 2021
Closed
Closed
Merged
@m-1-k-3 m-1-k-3 closed this as completed Sep 7, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
docker docker related things help wanted Extra attention is needed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@m-1-k-3