https://hex-go.github.io/tags/security/Recent content in Security on Hex BlogHugo -- gohugo.iozhhex-py@gmail.com (Hex)hex-py@gmail.com (Hex)©2026, All Rights ReservedSun, 28 Jun 2020 09:36:19 +0000https://hex-go.github.io/posts/kubernetes/2020-06-28-docker-kubernetes%E9%9B%86%E7%BE%A4%E4%B8%AD%E4%BB%A5%E9%9D%9Eroot%E5%90%AF%E5%8A%A8%E5%AE%B9%E5%99%A8/Sun, 28 Jun 2020 09:36:19 +0000hex-py@gmail.com (Hex)Sun, 28 Jun 2020 09:36:19 +0000https://hex-go.github.io/posts/kubernetes/2020-06-28-docker-kubernetes%E9%9B%86%E7%BE%A4%E4%B8%AD%E4%BB%A5%E9%9D%9Eroot%E5%90%AF%E5%8A%A8%E5%AE%B9%E5%99%A8/重要 容器默认以 root 运行，与宿主机 root 共享同一 UID 空间。一旦容器可访问宿主机资源，等同于宿主机 root 权限。 1. 问题 安全漏洞 CVE-2019-11245：容HexKubernetesSecurityKubernetes