Difference between revisions of "Docker Security"

From Glitchdata
Jump to navigation Jump to search
(Created page with " One of the valuable aspects to Docker Images is the ability to sign them. This allows the validation of integrity and trust of an Image. Docker achieves this using Docker...")
 
Line 3: Line 3:
  
 
Docker achieves this using [[Docker Notary]]
 
Docker achieves this using [[Docker Notary]]
 +
 +
 +
* Know what is in the code base
 +
** Understand the libraries, and it origin
 +
* Know what is in your containers
 +
* Docker Image Authenticity - Do you know the source?
 +
* Avoid noisy neighbours - Help survive DDoS attacks.
 +
* Running containers in super-priviledged mode might be unnecessary
  
  
 
[[Category: Docker]]
 
[[Category: Docker]]
 
[[Category: Security]]
 
[[Category: Security]]

Revision as of 20:50, 18 February 2019

One of the valuable aspects to Docker Images is the ability to sign them. This allows the validation of integrity and trust of an Image.

Docker achieves this using Docker Notary


  • Know what is in the code base
    • Understand the libraries, and it origin
  • Know what is in your containers
  • Docker Image Authenticity - Do you know the source?
  • Avoid noisy neighbours - Help survive DDoS attacks.
  • Running containers in super-priviledged mode might be unnecessary