From ae6d26a39801634fc615ec451cd58fc27b85dbf1 Mon Sep 17 00:00:00 2001 From: Riyaz Faizullabhoy Date: Sun, 19 Mar 2017 09:05:05 -0700 Subject: [PATCH] Add detail about read-only rootfs and dockercon Signed-off-by: Riyaz Faizullabhoy --- reports/2017-03-19.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/reports/2017-03-19.md b/reports/2017-03-19.md index df8921c0f..b3957e13e 100644 --- a/reports/2017-03-19.md +++ b/reports/2017-03-19.md @@ -47,7 +47,7 @@ As mentioned above @avsm has worked on initial support for the packet.net instan The kernel container build has been improved, with human readable names eg `mobylinux/kernel:4.9.x` and will soon be built again in CI #1295. We upgraded the standard kernel to 4.9.15 #1305. We will add 4.10.x builds shortly. -@riyazdf has done some more work on making more containers run read only #1290 #1301 #1298 and is working on splitting out DHCP into a seperate service container so that it can be removed if other networking configuration is being used or if other clients are used #1316. +@riyazdf has done some more work on making Moby run with a read only rootfs #1298 as well as more containers run read only #1290 #1301. There is also work on splitting out DHCP into a seperate service container so that it can be removed if other networking configuration is being used or if other clients are used #1316. ## Next week priorities @@ -60,4 +60,5 @@ The kernel container build has been improved, with human readable names eg `moby ## Dockercon - there will be a talk by @justincormack on Moby (currently billed as containerd...) +- there will be a Docker Security talk with @riyazdf (`Secure Substrate: Least Privilege Container Deployment`) that will highlight Moby - there will be a session and lots of time to talk at the Thursday summit - get in touch if you need an invite.