Haelwenn /ɛlwən/ 🖳 utilise pouet.it. Vous pouvez læ suivre et interagir si vous possédez un compte quelque part dans le "fediverse". Si ce n’est pas le cas, vous pouvez en créer un ici.

That's the part of the containers way I just can't accept:

github.com/kubernetes/ingress/

1. Your ingress controller is a Google managed nginx image you have no guarantee on.
2. It downloads and run a binary from Github.

No hashs, no signatures; Google, GitHub, tini's owner and anyone pwning them could get a root shell in your setup and MITM everything without anyone noticing for some time.

I don't believe Google will ever do that or be pwnd, but I'm not so confident in GitHub's security for instance, and much less in tini's owner.
How many servers can you own with a single GitHub account? Correct answer is "what the fuck".

Haelwenn /ɛlwən/ 🖳 @lanodan_tmp

@CobaltVelvet Is “too many” a good answer too ?

· Web · 0 · 0

@CobaltVelvet Ok, actually I just done that reading the CVE RSS feed…