centersl/docker-docs
1
0
Fork 0
mirror of https://github.com/docker/docs.git synced 2026-03-27 14:28:47 +07:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #23162 from austinvazquez/fix-moby-engine-links

Browse Source 
fix: link for moby container default capabilities
This commit is contained in:
Sebastiaan van Stijn
2025-07-25 19:23:53 +02:00
committed by GitHub
parent edf684d25d b398f346a7
commit ad45b8f660
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
content/manuals/engine/security/_index.md
View File

@@ -194,7 +194,7 @@ to the host.
This doesn't affect regular web apps, but reduces the vectors of attack by
malicious users considerably. By default Docker
drops all capabilities except [those
needed](https://github.com/moby/moby/blob/master/oci/caps/defaults.go#L6-L19),
needed](https://github.com/moby/moby/blob/master/daemon/pkg/oci/caps/defaults.go#L6-L19),
an allowlist instead of a denylist approach. You can see a full list of
available capabilities in [Linux
manpages](https://man7.org/linux/man-pages/man7/capabilities.7.html).