yes. althought flatpak as a use case for userspace, typically desktop programs is arguably not bad, if you’re grandma is the one using the device… but bloated and at that point, why not AppImage.
Look at the OP. docker created a security loophole just by being installed. If having a hammer in my basement means the door locks on my house don’t work, then I will in fact blame the hammer.
yeah but it’s a hammer thatb you can only reasonable run with root privileges so if someone cracks the head they can remotely hammer you in the dick with it.
anyway, great tool for hammering nails (using 4 GB of RAM per nail) and all, just weird for me, having come from the old computing era, that it’s not more restricted.
I’m always baffled at the security model (the lack thereof) of docker.
And flatpak.
yes. althought flatpak as a use case for userspace, typically desktop programs is arguably not bad, if you’re grandma is the one using the device… but bloated and at that point, why not AppImage.
Docker is a tool, like a hammer. If you hammer yourself on the dick then that is on you, and not the hammer.
Look at the OP. docker created a security loophole just by being installed. If having a hammer in my basement means the door locks on my house don’t work, then I will in fact blame the hammer.
IIRC adding docker to the wheel group is actually an optional, manual post-install step given in the official installation guide.
without it, everything works but you have to add sudo to every docker command
yeah but it’s a hammer thatb you can only reasonable run with root privileges so if someone cracks the head they can remotely hammer you in the dick with it. anyway, great tool for hammering nails (using 4 GB of RAM per nail) and all, just weird for me, having come from the old computing era, that it’s not more restricted.