December 2015
Beginner to intermediate
354 pages
8h 38m
English
Content preview from Using Docker
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.
Chapter 13. Security and Limiting Containers
To use Docker safely, you need to be aware of the potential security issues and the major tools and techniques for securing container-based systems. In this chapter, we will consider security from the viewpoint of running Docker in production, but most of the advice is equally applicable to development. Even with security, it is important to keep the development and production environments similar in order to avoid the issues around moving code between environments that Docker was intended to solve.
Reading online posts and news items and Jonathan Rudenberg’s article on image insecurity, but note that the issues in Jonathan’s article have been largely addressed by the development of digests and the Notary project.] about Docker can give you the impression that Docker is inherently insecure and not ready for production use.footnote:[The better articles on Docker security include the series by Dan Walsh of Red Hat on Opensource.com While you certainly need to be aware of issues related to using containers safely, if used properly, containers can provide a more secure and efficient system than using VMs or bare metal alone.
This chapter begins by exploring some of the issues surrounding the security of container-based systems that you should be thinking about when using containers.
Disclaimer!
The guidance in this chapter is based on my opinion. I am not a security researcher, nor am I responsible for any major public-facing system. That ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access
More than 5,000 organizations count on O’Reilly
O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.Julian F.
I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.Addison B.
I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.Amir M.
I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.