723
How Docker was born (lemmy.ml)
submitted 1 day ago by cm0002@lemmy.world to c/programmer_humor@programming.dev
34 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] Drasla@lemmy.studio 1 points 23 hours ago

You mean compromised code sneaking into Docker images? Or a DOS on dockerhub?

[-] roofuskit@lemmy.world 2 points 20 hours ago

They worry about someone replacing the docker image on the hosting server with a malicious modified version for people to pull down during updates.

[-] zalgotext@sh.itjust.works 8 points 19 hours ago

This worry exists for literally every 3rd party dependency, not just docker, and is addressed the same way - by running tests and vulnerability scans in a sandboxed test environment before shipping to prod

[-] roofuskit@lemmy.world 2 points 19 hours ago

I was just answering a question. I had the same response above.

[-] zalgotext@sh.itjust.works 2 points 18 hours ago

And I was just adding extra details

[-] kitnaht@lemmy.world 2 points 22 hours ago

Supply chain attack has a definition. And it has nothing to do with DDoS.

[-] GreenKnight23@lemmy.world 4 points 22 hours ago

ddos is vaguely related to a supply chain attack in the sense that it can be used as a distraction to implement said chain attack. it was pretty common tactic at one point.

  • disrupt services
  • implement bad library in backups as all focus turns to production
  • destroy production enough to require a restore

I think this is what they meant, but it's a stretch.

this post was submitted on 24 Feb 2025
723 points (97.5% liked)

Programmer Humor

20764 readers
1599 users here now

Welcome to Programmer Humor!

This is a place where you can post jokes, memes, humor, etc. related to programming!

For sharing awful code theres also Programming Horror.

Rules

founded 2 years ago
MODERATORS
Feyter@programming.dev
anzo@programming.dev
BurningTurtle@programming.dev
pylapp@programming.dev