Index

A

• adaptability
  • enabling / The future
• ADD instruction
  • about / The ADD instruction
• Advanced Multi-layered unification Filesystem (AuFS) / The best practices for container security
• agility
  • enabling / The future
• Amazon Web Services (AWS)
  • Docker container, running / Running a Docker container on Amazon Web Services
• Another Union File System (AUFS)
  • about / An introduction to Docker
• automated build link, Docker Hub
  • URL / Automating the building process for images

B

• best practices, for container security
  • about / The best practices for container security
  • security measures / The best practices for container security

C

• categories, docker images subcommand
  • REPOSITORY / Working with Docker images
  • TAG / Working with Docker images
  • IMAGE ID / Working with Docker images
  • CREATED / Working with Docker images
  • VIRTUAL SIZE / Working with Docker images
• cloud paradigm
  • empowering / The future
• CMD instruction
  • about / The CMD instruction
• code testing, in Docker
  • about / Testing your code inside Docker
  • performing / Testing your code inside Docker
  • running, inside container / Running the test inside a container
  • Docker container, using as runtime environment / Using a Docker container as a runtime environment
• common pitfalls, avoiding
  • directory leaks / Directory leaks
  • undesirable effect of data volume / The undesirable effect of data volume
• Container as a Service (CaaS)
  • envisaging / Envisaging the Container as a Service
  • HTTP server image, building / Building an HTTP server image
  • HTTP server image, running as service / Running the HTTP server Image as a Service
  • connecting, to HTTP service / Connecting to the HTTP service
• containerization and virtualization
  • differences / Differentiating between containerization and virtualization
  • convergence / The convergence of containerization and virtualization
• containerization technologies
  • about / Containerization technologies
  • LXC (Linux Containers) / Containerization technologies
  • OpenVZ / Containerization technologies
  • FreeBSD jail / Containerization technologies
  • AIX Workload partitions (WPARs) / Containerization technologies
  • Solaris Containers / Containerization technologies
• containerized application
  • debugging / Debugging a containerized application
• container networking
  • about / A brief overview of container networking
  • network configuration lists / A brief overview of container networking
• containers
  • linking / Linking containers
  • orchestration / Orchestration of containers
• container security
  • best practices / The best practices for container security
• container services
  • exposing / Exposing container services
  • container port, publishing / Publishing container ports – the -p option
  • -p option / Publishing container ports – the -p option
  • Network Address Translation (NAT) / Network Address Translation for containers
  • container port, retrieving / Retrieving the container port
  • container, building to specific IP address / Binding a container to a specific IP address
  • Docker host port, auto-generating / Auto-generating the Docker host port
  • port binding, EXPOSE and -P option used / Port binding using EXPOSE and the -P option
• control groups (cgroups) / Control groups
• COPY instruction
  • about / The COPY instruction
• custom index and registry
  • running / Run your own index and registry
  • index components, deploying from GitHub / Step 1 – Deployment of the index components and the registry from GitHub
  • registry, deploying from GitHub / Step 1 – Deployment of the index components and the registry from GitHub
  • nginx, configuring with Docker registry / Step 2 – Configuration of nginx with the Docker registry
  • SSL, setting up on web server / Step 3 – Set up SSL on the web server for secure communication

D

• .dockerignore file
  • about / The .dockerignore file
• data sharing, between containers
  • about / Sharing data between containers
  • data-only containers / Data-only containers
  • data volume, mounting from other containers / Mounting data volume from other containers
  • practicality / The practicality of data sharing between containers
• data volume
  • about / The data volume
• Denial of Service (DoS)
  • about / Resource accounting and control
• Denial of Service (DoS) attacks / Control groups
• Digital signature verification
  • about / Digital signature verification
  • secure deployment guidelines / Secure deployment guidelines for Docker
• directory leaks
  • avoiding / Directory leaks
  • undeleted directories / Directory leaks
  • third-party images / Directory leaks
• discretionary access control (DAC) / Security-Enhanced Linux for container security
• distributed paradigm
  • strengthening / The future
• Docker
  • about / An introduction to Docker
  • on Linux / Docker on Linux
  • latest version, installing / Installing the latest Docker using docker.io script
  • troubleshooting / Troubleshooting
  • future / The future
• Docker's integrated image building system
  • about / Docker's integrated image building system
• docker-compose.yml file / The docker-compose.yml file
• docker-compose command
  • about / The docker-compose command
• docker-compose tool
  • about / Orchestrate containers using docker-compose
  • using / Orchestrate containers using docker-compose
  • installing / Installing docker-compose
  • options / The docker-compose command
  • --verbose option / The docker-compose command
  • --version option / The docker-compose command
  • -f, --file <file> option / The docker-compose command
  • -p, --project-name <name> option / The docker-compose command
  • build command / The docker-compose command
  • kill command / The docker-compose command
  • logs command / The docker-compose command
  • port command / The docker-compose command
  • ps command / The docker-compose command
  • pull command / The docker-compose command
  • rm command / The docker-compose command
  • run command / The docker-compose command
  • scale command / The docker-compose command
  • start command / The docker-compose command
  • stop command / The docker-compose command
  • up command / The docker-compose command
• docker-compose version 1.2.0
  • image / The docker-compose.yml file
  • build / The docker-compose.yml file
  • command / The docker-compose.yml file
  • links / The docker-compose.yml file
  • external_links / The docker-compose.yml file
  • ports / The docker-compose.yml file
  • expose / The docker-compose.yml file
  • volumes / The docker-compose.yml file
  • volumes_from / The docker-compose.yml file
  • environment / The docker-compose.yml file
  • env_file / The docker-compose.yml file
  • extends / The docker-compose.yml file
  • net / The docker-compose.yml file
  • pid / The docker-compose.yml file
  • dns / The docker-compose.yml file
  • cap_add / The docker-compose.yml file
  • cap_drop / The docker-compose.yml file
  • dns_search / The docker-compose.yml file
  • working_dir / The docker-compose.yml file
  • entrypoint / The docker-compose.yml file
  • user / The docker-compose.yml file
  • hostname / The docker-compose.yml file
  • domainname / The docker-compose.yml file
  • men_limit / The docker-compose.yml file
  • privileged / The docker-compose.yml file
  • restart / The docker-compose.yml file
  • stdin_open / The docker-compose.yml file
  • tty / The docker-compose.yml file
  • cpu_shares / The docker-compose.yml file
• docker.io script
  • used, for installing latest Docker / Installing the latest Docker using docker.io script
• docker attach subcommand / Working with an interactive container
• Docker container
  • about / An introduction to Docker, A Docker container
  • running / Running the first Docker container
  • running, on Amazon Web Services (AWS) / Running a Docker container on Amazon Web Services
  • using, as runtime environment / Using a Docker container as a runtime environment
  • process level isolation, providing / Process level isolation for Docker containers
  • securing / Are Docker containers secure enough?
  • security facets / The security facets – virtual machines versus Docker containers
  • security features / The security features of containers
• Docker engine
  • about / An introduction to Docker
  • installing / Installing the Docker engine
  • installing, from Ubuntu package / Installing from the Ubuntu package repository
• Docker events command
  • about / The Docker events command
• Docker exec command
  • about / The Docker exec command
• Dockerfile
  • about / Docker's integrated image building system, A quick overview of the Dockerfile's syntax
  • syntax / A quick overview of the Dockerfile's syntax
  • best practices, for writing / Best practices for writing Dockerfiles
• Dockerfile build instructions
  • about / The Dockerfile build instructions
  • FROM instruction / The FROM instruction
  • MAINTAINER instruction / The MAINTAINER instruction
  • COPY instruction / The COPY instruction
  • ADD instruction / The ADD instruction
  • ENV instruction / The ENV instruction
  • USER instruction / The USER instruction
  • WORKDIR instruction / The WORKDIR instruction
  • VOLUME instruction / The VOLUME instruction
  • EXPOSE instruction / The EXPOSE instruction
  • RUN instruction / The RUN instruction
  • CMD instruction / The CMD instruction
  • ENTRYPOINT instruction / The ENTRYPOINT instruction
  • ONBUILD instruction / The ONBUILD instruction
  • .dockerignore file / The .dockerignore file
• Docker Hub
  • about / An introduction to Docker, Understanding the Docker Hub
  • Docker Registry / Understanding the Docker Hub
  • URL / Understanding the Docker Hub
  • Sign Up process / Understanding the Docker Hub
  • images, pushing to / Pushing images to the Docker Hub
  • private repositories / Private repositories on the Docker Hub
  • organization, creating / Organizations and teams on the Docker Hub
  • team, creating / Organizations and teams on the Docker Hub
  • REST APIs / The REST APIs for the Docker Hub
• Docker Hub Registry
  • about / Docker Hub Registry
  • URL / Automating the building process for images
• Docker image
  • downloading / Downloading the first Docker image
  • about / Docker images and containers
  • Debian distribution / Docker images and containers
  • working with / Working with Docker images
  • Docker Hub Registry / Docker Hub Registry
  • searching / Searching Docker images
• Docker image management
  • about / A brief overview of the Docker image management
• docker images subcommand
  • categories / Working with Docker images
• docker inspect subcommand / Retrieving the container port
• Docker layer
  • about / A Docker layer
• Docker logs command
  • about / The Docker logs command
• docker logs subcommand / Launching a container as a daemon
• docker pause subcommand / Controlling Docker containers
• docker port subcommand / Retrieving the container port
• Docker ps command
  • about / The Docker ps command
• docker ps subcommand
  • CONTAINER ID / Working with an interactive container
  • IMAGE / Working with an interactive container
  • COMMAND / Working with an interactive container
  • CREATED / Working with an interactive container
  • STATUS / Working with an interactive container
  • PORTS / Working with an interactive container
  • NAMES / Working with an interactive container
  / Retrieving the container port
• Docker registry
  • index / The Docker registry and index
  • characteristics / The Docker registry and index
  • features / The Docker registry and index
  • reference / The Docker registry and index
  • use cases / Docker registry use cases
• Docker Registry
  • about / Docker Registry
• Docker Repository
  • about / Docker Repository
• docker run subcommand / Launching a container as a daemon
• Docker setup
  • about / Understanding the Docker setup
  • client server communication / Client server communication
• Docker stats command
  • about / The Docker stats command
• Docker terms
  • Docker image / Docker images and containers
  • Docker layer / A Docker layer
  • Docker container / A Docker container
  • Docker Registry / Docker Registry
  • Docker Repository / Docker Repository
• Docker testing
  • integrating, into Jenkins / Integrating Docker testing into Jenkins
  • Jenkins environment, preparing / Preparing the Jenkins environment
  • automating / Automating the Docker testing process
• Docker top command
  • about / The Docker top command
• docker unpause subcommand / Controlling Docker containers

E

• ENTRYPOINT instruction
  • about / The ENTRYPOINT instruction
• ENV instruction
  • about / The ENV instruction
• environment variables
  • NAME / Linking containers
  • ENV / Linking containers
  • PORT / Linking containers
• ExposedPorts object / Retrieving the container port
• EXPOSE instruction
  • about / The EXPOSE instruction

F

• FROM instruction
  • about / The FROM instruction

H

• host data
  • sharing / Sharing host data
  • practicality, of host data-sharing / The practicality of host data sharing

I

• image
  • pushing. to newly created Docker registry / Push the image to the newly created Docker registry
• images
  • pushing, to Docker Hub / Pushing images to the Docker Hub
  • automated build process, implementing / Automating the building process for images
• interactive container
  • working with / Working with an interactive container
  • changes, tracking / Tracking changes inside containers
  • Docker containers, controlling / Controlling Docker containers
  • housekeeping containers / Housekeeping containers
  • images, building from / Building images from containers
  • launching, as daemon / Launching a container as a daemon
• Interprocess Communication (IPC) namespaces / Process level isolation for Docker containers
• IPC namespace
  • about / Resource isolation
• IT elasticity
  • enabling / The future

J

• Jenkins
  • Docker testing, integrating into / Integrating Docker testing into Jenkins
• Jenkins environment
  • preparing / Preparing the Jenkins environment

K

• kernel namespaces
  • about / Resource isolation

M

• MAINTAINER instruction
  • about / The MAINTAINER instruction
• Mandatory Access Control (MAC) / Security-Enhanced Linux for container security
• microservice architecture / Orchestration of containers
• mockredis
  • about / Testing your code inside Docker
  • URL / Testing your code inside Docker
• Mount namespace
  • about / Resource isolation
• Multi-Category security (MCS) / Security-Enhanced Linux for container security
• Multi -Category Security (MCS) / Security-Enhanced Linux for container security
• Multi-Level security (MLS) / Security-Enhanced Linux for container security

N

• Network Address Translation (NAT) / Network Address Translation for containers
• Network Attached Storage (NAS) / Process level isolation for Docker containers
• network configuration lists, container networking
  • bridge / A brief overview of container networking
  • gateway / A brief overview of container networking
  • IP address / A brief overview of container networking
  • IPPrefixLen / A brief overview of container networking
  • PortMapping / A brief overview of container networking
  • ports / A brief overview of container networking
• Network namespace
  • about / Resource isolation
• Node.js / Common usage
• nsenter
  • about / Installing and using nsenter
  • installing / Installing and using nsenter
  • using / Installing and using nsenter

O

• ONBUILD instruction
  • about / The ONBUILD instruction
• orchestration, of containers
  • about / Orchestration of containers
  • docker-compose tool, used / Orchestrate containers using docker-compose
  • docker-compose tool, installing / Installing docker-compose
  • docker-compose.yml file / The docker-compose.yml file
  • docker-compose command / The docker-compose command
  • common usage / Common usage

P

• Parent Process ID (PPID) / Process level isolation for Docker containers
• PID namespace
  • about / Resource isolation
• portability
  • enabling / The future
• PortBindings object / Retrieving the container port
• Ports object / Retrieving the container port
• private repositories, Docker Hub
  • about / Private repositories on the Docker Hub
• process level isolation, for Docker containers
  • about / Process level isolation for Docker containers
  • providing / Process level isolation for Docker containers
  • control groups (cgroups) / Control groups
• public key infrastructure (PKI) / Digital signature verification
• Python Web Server Gateway Interface (WSGI) HTTP server / Step 1 – Deployment of the index components and the registry from GitHub

R

• Redis / Common usage
• repository management, Docker Hub
  • user repository, creating / The REST APIs for the Docker Hub
  • user repository, deleting / The REST APIs for the Docker Hub
  • library repository, creating / The REST APIs for the Docker Hub
  • library repository, deleting / The REST APIs for the Docker Hub
  • user repository images, updating / The REST APIs for the Docker Hub
  • user repository images, listing / The REST APIs for the Docker Hub
  • library repository images, updating / The REST APIs for the Docker Hub
  • library repository images, listing / The REST APIs for the Docker Hub
  • token for library repository, authorizing / The REST APIs for the Docker Hub
  • token for user repository, authorizing / The REST APIs for the Docker Hub
• REST APIs, Docker Hub
  • about / The REST APIs for the Docker Hub
• restart command / Controlling Docker containers
• root privilege
  • about / The root privilege – impacts and best practices
  • trusted user control / The trusted user control
  • non-root containers / Non-root containers
  • Docker images, loading / Loading the Docker images and the security implications
  • security implications / Loading the Docker images and the security implications
  • emerging security approaches / The emerging security approaches
• RUN instruction
  • about / The RUN instruction

S

• Secure Sockets Layer (SSL) / Step 1 – Deployment of the index components and the registry from GitHub
• security, Docker container
  • root privilege / The root privilege – impacts and best practices
• Security-Enhanced Linux (SELinux)
  • about / Security-Enhanced Linux for container security
  • for container security / Security-Enhanced Linux for container security
  • benefits / SELinux-inspired benefits
• security features, Docker container
  • about / The security features of containers
  • resource isolation / Resource isolation
  • resource accounting and control / Resource accounting and control
• service computing (SC) / Orchestration of containers
• SIGKILL signal / Controlling Docker containers
• SIGTERM signal / Controlling Docker containers
• Storage Area Network (SAN) / Process level isolation for Docker containers

T

• Test-driven development (TDD)
  • overview / A brief overview of the test-driven development
  • reference / A brief overview of the test-driven development
• troubleshooting
  • Docker / Troubleshooting

U

• use cases, Docker registry
  • pull or download an image / Docker registry use cases
  • push an image / Docker registry use cases
  • delete an image / Docker registry use cases
• USER instruction
  • about / The USER instruction
• user management, Docker Hub
  • user login / The REST APIs for the Docker Hub
  • user register / The REST APIs for the Docker Hub
  • update user / The REST APIs for the Docker Hub
• UTS namespace
  • about / Resource isolation

V

• virtual machines
  • versus Docker container / The security facets – virtual machines versus Docker containers
• virtual machines (VM)
  • about / An introduction to Docker
• VOLUME instruction
  • about / The VOLUME instruction

W

• WORKDIR instruction
  • about / The WORKDIR instruction

Y

• YAML Ain't Markup Language (YAML) format file / The docker-compose.yml file