Questions to ask yourself about security with Docker containers

1) How the image you put in the FROM was created. Who did it?2) Verify that it was not modified after its creation. Do you check the SHAsum or the md5sum?3) Check the content of the image. Use the software you need, nothing more. Don't add any more vulnerability entries.4) Scan for security vulnerabilities.5) Run…

Advertisement

Docker swarm and secrets

I am going to create a service with postgres using secrets in Swarm mode: /Users/aironman/gitProjects/udemy-docker-mastery/secrets-sample-1> ll 12:26 aironman@MacBook-Pro-de-AlonsoExecuting ls -lhtotal 8-rw-r--r-- 1 aironman staff 11B May 4 11:33 psql_user.txt█▓▒░aironman@MacBook-Pro-de-Alonso░▒▓██▓▒░ Wed Jun 16 12:26:44P/Users/aironman/gitProjects/udemy-docker-mastery/secrets-sample-1> bat psql_user.txt 12:26 aironman@MacBook-Pro-de-AlonsoFile: psql_user.txtmypsqluser Creating a secret user file with super secret username █▓▒░aironman@MacBook-Pro-de-Alonso░▒▓██▓▒░ Wed Jun 16 12:26:51P/Users/aironman/gitProjects/udemy-docker-mastery/secrets-sample-1> docker secret create…

Actualizar contenedores Docker automáticamente

Imagina que tus compañeros estan desarrollando algo que finalmente llega a ser un contenedor docker,le llamaremos docker101tutorial, alojada en tu docker registry privado y quieres tener siempre la última versión desplegada en tu anfitrion Docker, pues, podríamos hacer algo así: Crea un fichero cron.sh con este contenido: #!/bin/sh if grep -Fqe "Image is up to…