Description

Mou Zhang
User privileges in Docker containers https://medium.com/jobteaser-dev-team/docker-user-best-practices-a8d2ca5205f4

As is shown in the picture, we (mou) have not access the information in the secret.txt.
2. Build a Dockerfile used for a python project and build an image. (This is only and example, which is not important. You can use other dockerfile)

3. You can build an image for it

4. Then you mount the while root file system of the host machine to the container and run it

As you can see, after running this command, we get the root access to the system.
5. Once in the container, you will have the ability to access the root-owned files. So we can get the message from secret that only root can view. This is very simple. You only need to access the host directory and find the lab5 directory.

6. For further steps, you can also add yourself to sudoers.d, so that you can run sudo without password.
This is to gain the power of sudo account.

7. Analysis:
By default, docker containers run as root. This provides us a chance to escape the container and get the root privilege and get control of the environment. If you mount the whole root system into the docker, then you can use the root privilege to access the whole root system.