Is it safe to run a Kubernetes container as a root user? [on hold]

I run my Spring Boot (Java) application in the Kubernetes environment as a root user and with JMX authentication turned on.

My k8s containers are being flagged as a security risk by the security professionals in my company. Is it really a security risk or just plain old housekeeping?

Will it make a difference if the JMX is unauthenticated?

P.S. I’ve asked this question in Stack Overflow but didn’t get a response that I was looking for.

Is the Outlook bar still a reasonable container for a list of lists?

(This assumes that it ever was, so please feel free to comment if you disagree!)

For years, our development team have designed data-centric desktop applications where the main window has an Outlook bar on the left, and clicking one of the tabs shows the associated list in the rest of the window…

Common (for us) main window UI layout

Double-clicking an item (or single-clicking and then clicking the Edit button) would open a child window with details for the customer, product, etc.

We’re just about to start a new application, and it made me wonder if we are behind the times. UIs have changed a lot over the years, and maybe people don’t do it this way any more.

As we have a licence for their controls, I had a look at Telerik’s demo applications, and they seem to be variations on the same theme, using treeviews and the like on the left…

Telerik sample UI

Anyone any comments? Do I carry on doing pretty much the same, or is there a more modern way to do it?

Thanks

Highlighting text in a selectable container

We have an issue where a user can click into the cell of a table, and the table will sort based on that selection. But, we also have research that shows users want to be able to select the content of those cells to be able to copy/paste.

The issue is once the user clicks into the cell, the table sorts, so they are no longer on the same content, and are unable to select.

I am trying to explain to the developers that maybe we can do something where if the user clicks into it and moved the cursor, it doesn’t change based on sorting. But of course, we’d need a slight affordance so that users with twitchy mouses can also sort.

Does anyone know of anything that fits this pattern that I can use as an example to show the developers and producer what I am talking about when I explain this?

Does the explanation of what is happening and the solution even make sense here? Is there another solution that I am not thinking about (without just getting rid of the feature completely as dev suggested).

Highlighting text in a selectable container

We have an issue where a user can click into the cell of a table, and the table will sort based on that selection. But, we also have research that shows users want to be able to select the content of those cells to be able to copy/paste.

The issue is once the user clicks into the cell, the table sorts, so they are no longer on the same content, and are unable to select.

I am trying to explain to the developers that maybe we can do something where if the user clicks into it and moved the cursor, it doesn’t change based on sorting. But of course, we’d need a slight affordance so that users with twitchy mouses can also sort.

Does anyone know of anything that fits this pattern that I can use as an example to show the developers and producer what I am talking about when I explain this?

Does the explanation of what is happening and the solution even make sense here? Is there another solution that I am not thinking about (without just getting rid of the feature completely as dev suggested).

LXD Container not accessible from other LAN machines

I am new to Linux world and I tried everything I can think off to solve this problem but stuck since so many days. My LXD container is not able to accessible from my LAN.

I tried followings: https://ubuntu.com/blog/converting-eth0-to-br0-and-getting-all-your-lxc-or-lxd-onto-your-lan https://openschoolsolutions.org/set-up-network-bridge-lxd/ https://discuss.linuxcontainers.org/t/slow-performance-with-nested-bridged-interface/4334 https://blog.simos.info/how-to-make-your-lxd-containers-get-ip-addresses-from-your-lan-using-a-bridge/ https://thomas-leister.de/en/lxd-use-public-interface/

but no help ! Something is wrong and I am not able to make it correct. Any help would be appreciated !!

if I use only bridged profile somehow my container don’t even get the IP, when I do lxc list ipv4 and ipv6 column are blank. I tried to change the container netplan configuration with below and container takes the IP but not able to ping 8.8.8.8 or accessible from host machine.

network: ethernets: eth0: addresses: – 171.17.139.97/28 dhcp4: false gateway4: 171.17.137.81 version: 2

Note – I am using Hyper-V manager and having window 10 host with ubuntu vm 18.04 created by using quick menu.

Thanks

Is it possible to forge key files and mount a veracrypt container?

If I have a Veracrypt container, and I use a key file with a password, if the key file is too simplistic, is it possible to recreate that key file and open the container?

Suppose if I use a .jpg of a simple image, can an attacker open up MS Paint (or a similar program), and recreate the image, and use it with the password to open the container, or would they need direct access to the original image?

Container que mueva todos los objetos a un lado

tengo un problema y es que estoy diseñando una pagina, y ahora me encuentro en la face final, el Responsive, lo que quiero hacer es que al redimensinar chrome hacia un lado, (Lado Izquierdo) se vaya todo hacia ese lado, no se si me explico muy bien, ejemplo: en la pagina de CodePen al volver la pestaña mas pequeña horizontalmente las Cards van hacia ese lado, quiero hacer lo mismo con varios objetos.

Gracias por su ayuda!!!

How are files in file container (posibly in archive file) encrypted?

I see advantage of using container in it that offer work with more files rather than with one but is there some advantage in encryption technique?I would like to know if it encrypt each single file in a container (or an archive) or is there some another technique used to encrypt it?I want create my own file container as a school project and add some features like encryption etc. therefore i would like to gain more complex overview firstly.

How to execute a command directly on the host system through docker.sock in Docker container?

I’ve been studying Docker security and examining ways of escaping from container to host.

Suppose Docker sock is mounted into the container at /var/run/docker.sock, so that Docker client (client) can send commands to Docker daemon (dockerd).

To execute commands on the host, I could run another container and mount /etc/ into it (read-write) to schedule CRON jobs (is it possible to mount /etc/ into the current container?).

Besides the above, what other methods are there for executing commands on the host through /var/run/docker.sock?

Fallo al implementar un dismissible() en un container de un ListView.builder en un StreamBuilder

estoy tratando de implementar un dismissible() en un container de un ListView.builder en un StreamBuilder, el problema es que no hace nada, es decir una vez hago hot reload tengo el container pero no puedo hacer la acción de deslizar, aquí adjunto el código, gracias por la ayuda de antemano

//metodo para contruir los containers dinamicos     _contenedorPrueba3(BuildContext context, List<PruebasModel> pruebas, int i){   final registroBloc = MarcasBloc();   return Dismissible(     key: UniqueKey(),       child: Container(         width: double.infinity,                     padding: EdgeInsets.symmetric(vertical: 15, horizontal: 5),                     decoration: BoxDecoration(                       color: Theme.of(context).cardColor,                       borderRadius: BorderRadius.circular(20),                       boxShadow:[                         BoxShadow(                           offset: Offset(0, 1),                           blurRadius:3,                           color: Colors.black12,                           spreadRadius: 3                         ),                       ]                      ),                       child: Text(pruebas[i].prueba, style: TextStyle(fontSize: 25),)                   ),                   /*onTap: (){                     Navigator.pushNamed(context, 'marcas', arguments: pruebas[i]);                   },*/                   onDismissed: (d){                     registroBloc.eliminarPorTipo(pruebas[i].prueba);                     registroBloc.eliminarPruebaPorNombre(pruebas[i].prueba);                   },   );  }  // buid de la app  @override   Widget build(BuildContext context) {      return Scaffold(       appBar: AppBar(         title: Text('Pruebas'),         centerTitle: true,       ),       body: pruebasContenedor(context), );   }