Given that the machine has full root privileges and all Linux capabilities enabled, is this configuration expected?
Should this level of privilege be considered a potential security vulnerability or an intentional design choice of the Fly.io Firecracker integration?
I’m not sure where you are seeing privileged=true, but Fly Machines are full virtual machines each running an independent Linux kernel, in which you get root, yes.
in general, please email us potential security issues at security@fly.io instead of posting them publicly.
This topic was automatically closed 7 days after the last reply. New replies are no longer allowed.