On Fri, Jan 6, 2017 at 7:47 PM, Daniel J Walsh <dwalsh(a)redhat.com> wrote:
Make sure that you point out that ANY process on the client that can
access the TLS certs now has FULL root on the server and can do anything
it wants on it.
Sure I will mention it. Thanks.
Another point that would be useful to add that we will want to give
access of Docker daemon of server only to the specific client host
that can be trusted.
--
Regards,
Trishna Guha
trishnaguha17(a)gmail.com
trishnag.wordpress.com