An organization hosts microservices in containers. The security team aims to keep privileges minimal without losing essential functionality. Which approach meets these goals?
Launch containers with limited user access and enable extra capabilities if required
Allow additional permissions to support debugging tasks
Provide higher-level privileges to support faster runtimes
Adjust isolation settings for more direct management
Using a container with restricted access and adding minimal capabilities when needed helps curb unsafe behaviors while preserving standard operations. In contrast, broad or elevated permissions leave the environment vulnerable, and altering isolation settings can lead to unintended security gaps.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What does 'minimal privileges' mean in the context of containers?
Open an interactive chat with Bash
What are 'extra capabilities' in containers, and how are they enabled?
Open an interactive chat with Bash
Why can elevated permissions or altered isolation settings be risky for container security?