How do you furnish the pigs apartment?
Where did you go to get software?
Go to yahoo.com or AltaVista.com
and google it?
I found it on rpmfind.net, download and install.
Hey I hear there is a big Security vulnerability in Zlib.
How many copies of the Zlib vulnerability to you have?
I have no clue!!!
Red Hat Enterprise Linux solved this problem
Certified software and hardware platforms
Containers move the responsibility for security updates from the Operator to the Developer.
Do you trust developers to
fix security issues in their images?
Everyone is doing one
Each scanner wants access to /var/run/docker.sock
What happens if my container runtime is not docker?
(Shameless plug for CRI-O)
Can I use my scanner to scan other rootfs?
Scans hightlight images with problems
Admin chooses to have OpenShift quarantee these images
How do you define trust?
How can I sign the images?
Must support multiple signatures?
Must not be tied to one registry?
Must be based on common standards?
Must be easy to understand?
Must support Offline Verification