Managing the Minimization of a Container Attack Surface - Neil Carpenter - ASW #344
文章讨论了减少攻击面以降低需跟踪的CVE数量及漏洞管理难度的挑战,特别是如何精简容器镜像并改变组织对每个CVE都需修复的观念。 2025-8-19 09:0:0 Author: sites.libsyn.com(查看原文) 阅读量:9 收藏
文章讨论了减少攻击面以降低需跟踪的CVE数量及漏洞管理难度的挑战,特别是如何精简容器镜像并改变组织对每个CVE都需修复的观念。 2025-8-19 09:0:0 Author: sites.libsyn.com(查看原文) 阅读量:9 收藏
Aug 19, 2025
A smaller attack surface should lead to a smaller list of CVEs to track, which in turn should lead to a smaller set of vulns that you should care about. But in practice, keeping something like a container image small has a lot of challenges in terms of what should be considered minimal. Neil Carpenter shares advice and anecdotes on what it takes to refine a container image and to change an org's expectations that every CVE needs to be fixed.
Visit https://www.securityweekly.com/asw for all the latest episodes!
Show Notes: https://securityweekly.com/asw-344
文章来源: http://sites.libsyn.com/18678/managing-the-minimization-of-a-container-attack-surface-neil-carpenter-asw-344
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh