https://live.paloaltonetworks.com/t5/advanced-threat-prevention/is-pan-av-and-or-wildfire-capable-of-analysing-docker-image/m-p/431297#M1299 <P>Hi,</P><P>&nbsp;</P><P>We have enabled SSL Decryption for almost all the web access of our users.</P><P>&nbsp;</P><P>Our devs are asking us to whitelist hub.docker.com, because it's anoying to put our internal CA in kubernetes.</P><P>I get it, but there's multiple example of docker image who was Malicious.</P><P>&nbsp;</P><P>I wonder if our firewall is able to detect that the currently docker image that an user is downloading is Malicious.</P><P>Because, if it's not the case, decrypting hub.docker.com is pointless IMO.</P><P>&nbsp;</P><P>Thanks,<BR />Vincent</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 03 Sep 2021 05:07:31 GMT VincentCollier 2021-09-03T05:07:31Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/is-pan-av-and-or-wildfire-capable-of-analysing-docker-image/m-p/431297#M1299 <P>Hi,</P><P>&nbsp;</P><P>We have enabled SSL Decryption for almost all the web access of our users.</P><P>&nbsp;</P><P>Our devs are asking us to whitelist hub.docker.com, because it's anoying to put our internal CA in kubernetes.</P><P>I get it, but there's multiple example of docker image who was Malicious.</P><P>&nbsp;</P><P>I wonder if our firewall is able to detect that the currently docker image that an user is downloading is Malicious.</P><P>Because, if it's not the case, decrypting hub.docker.com is pointless IMO.</P><P>&nbsp;</P><P>Thanks,<BR />Vincent</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Fri, 03 Sep 2021 05:07:31 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/is-pan-av-and-or-wildfire-capable-of-analysing-docker-image/m-p/431297#M1299 VincentCollier 2021-09-03T05:07:31Z