[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ale] Backdoored/Cryptocurrency Images

Subject: [ale] Backdoored/Cryptocurrency Images
From: james.sumners at gmail.com (James Sumners)
Date: Thu, 14 Jun 2018 15:52:07 -0400
In-reply-to: <[email protected]>
References: <[email protected]>

As with everything, you have to do your due diligence. Notice that the
backdoored images all came from an account like "docker123987". That's your
first clue to not trust the image: the poster is trying to remain
anonymous. But even then, you should be reviewing the source code that
builds the image.

On Thu, Jun 14, 2018 at 15:43 Alex Carver via Ale <ale at ale.org> wrote:

> This was exactly why I asked about creating Docker images entirely from
> scratch unlike the countless how-to's that suggest downloading the
> premade images.
>
>
> https://arstechnica.com/information-technology/2018/06/backdoored-images-downloaded-5-million-times-finally-removed-from-docker-hub/
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> https://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
-- 
James Sumners
http://james.sumners.info/ (technical profile)
http://jrfom.com/ (personal site)
http://haplo.bandcamp.com/ (music)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.ale.org/pipermail/ale/attachments/20180614/c9a593ed/attachment.html>

Follow-Ups:
- [ale] Backdoored/Cryptocurrency Images
  - From: agcarver+ale at acarver.net (Alex Carver)

References:
- [ale] Backdoored/Cryptocurrency Images
  - From: agcarver+ale at acarver.net (Alex Carver)

Prev by Date: [ale] Backdoored/Cryptocurrency Images
Next by Date: [ale] Backdoored/Cryptocurrency Images
Previous by thread: [ale] Backdoored/Cryptocurrency Images
Next by thread: [ale] Backdoored/Cryptocurrency Images
Index(es):
- Date
- Thread