[ad_1]
Software :: Container
Burglar server at Docker
The Docker project reports a break in the project server. According to the company behind Docker, attackers had access to user data of 190,000 accounts.
As the Docker project announced this weekend, unknown attackers were able to temporarily access the internal system of the project last week. According to project managers, unknown attackers have access to data from 190,000 users. These account names included, but also hashes for pbadwords and tokens for GitHub and Bitbucket.
The company, behind Docker, contacted all users whose access data may have been compromised and requested a change to the access data. Potentially stolen chips were also immediately locked, which resulted in the end of automatic builds. Users must therefore generate new tokens and link their accounts to the corresponding services.
Whether the data manipulated on the server or on other servers has been changed, the team can not confirm. However, Docker believes that the integrity of the images is ensured by appropriate security measures. These include GPG signatures for validations and dedicated signatures for individual packages.
Docker is a software that groups applications in containers and allows them to run almost anywhere. The system looks like a combination of virtualization using containers and a versioning system. Developers can easily test applications and their dependencies or images first locally and then distribute them in the cloud. If the image is modified, a new container is created for it. The containers consume minimal system resources and are largely virtualized, with the guest also being able to use VirtualBox systems other than Linux.
Source link
