@rysiek@mastodon.technology @saxnot@chaos.social I did a lot of work with our security office after some research docker containers kept getting (harmlessly) compromised because they had unpassworded mongodb instances facing the internet. One lesson was that nobody understood the networking, in particular the relation to the host netfilter rules.