Index
A
- adaptability
- enabling / The future
- ADD instruction
- about / The ADD instruction
- Advanced Multi-layered unification Filesystem (AuFS) / The best practices for container security
- agility
- enabling / The future
- Amazon Web Services (AWS)
- Docker container, running / Running a Docker container on Amazon Web Services
- Another Union File System (AUFS)
- about / An introduction to Docker
- automated build link, Docker Hub
B
- best practices, for container security
- about / The best practices for container security
- security measures / The best practices for container security
C
- categories, docker images subcommand
- REPOSITORY / Working with Docker images
- TAG / Working with Docker images
- IMAGE ID / Working with Docker images
- CREATED / Working with Docker images
- VIRTUAL SIZE / Working with Docker images
- cloud paradigm
- empowering / The future
- CMD instruction
- about / The CMD instruction
- code testing, in Docker
- about / Testing your code inside Docker
- performing / Testing your code inside Docker
- running, inside container / Running the test inside a container
- Docker container, using as runtime environment / Using a Docker container as a runtime environment
- common pitfalls, avoiding
- directory leaks / Directory leaks
- undesirable effect of data volume / The undesirable effect of data volume
- Container as a Service (CaaS)
- envisaging / Envisaging the Container as a Service
- HTTP server image, building / Building an HTTP server image
- HTTP server image, running as service / Running the HTTP server Image as a Service
- connecting, to HTTP service / Connecting to the HTTP service
- containerization and virtualization
- containerization technologies
- about / Containerization technologies
- LXC (Linux Containers) / Containerization technologies
- OpenVZ / Containerization technologies
- FreeBSD jail / Containerization technologies
- AIX Workload partitions (WPARs) / Containerization technologies
- Solaris Containers / Containerization technologies
- containerized application
- debugging / Debugging a containerized application
- container networking
- about / A brief overview of container networking
- network configuration lists / A brief overview of container networking
- containers
- linking / Linking containers
- orchestration / Orchestration of containers
- container security
- best practices / The best practices for container security
- container services
- exposing / Exposing container services
- container port, publishing / Publishing container ports – the -p option
- -p option / Publishing container ports – the -p option
- Network Address Translation (NAT) / Network Address Translation for containers
- container port, retrieving / Retrieving the container port
- container, building to specific IP address / Binding a container to a specific IP address
- Docker host port, auto-generating / Auto-generating the Docker host port
- port binding, EXPOSE and -P option used / Port binding using EXPOSE and the -P option
- control groups (cgroups) / Control groups
- COPY instruction
- about / The COPY instruction
- custom index and registry
- running / Run your own index and registry
- index components, deploying from GitHub / Step 1 – Deployment of the index components and the registry from GitHub
- registry, deploying from GitHub / Step 1 – Deployment of the index components and the registry from GitHub
- nginx, configuring with Docker registry / Step 2 – Configuration of nginx with the Docker registry
- SSL, setting up on web server / Step 3 – Set up SSL on the web server for secure communication
D
- .dockerignore file
- about / The .dockerignore file
- data sharing, between containers
- about / Sharing data between containers
- data-only containers / Data-only containers
- data volume, mounting from other containers / Mounting data volume from other containers
- practicality / The practicality of data sharing between containers
- data volume
- about / The data volume
- Denial of Service (DoS)
- about / Resource accounting and control
- Denial of Service (DoS) attacks / Control groups
- Digital signature verification
- about / Digital signature verification
- secure deployment guidelines / Secure deployment guidelines for Docker
- directory leaks
- avoiding / Directory leaks
- undeleted directories / Directory leaks
- third-party images / Directory leaks
- discretionary access control (DAC) / Security-Enhanced Linux for container security
- distributed paradigm
- strengthening / The future
- Docker
- about / An introduction to Docker
- on Linux / Docker on Linux
- latest version, installing / Installing the latest Docker using docker.io script
- troubleshooting / Troubleshooting
- future / The future
- Docker's integrated image building system
- docker-compose.yml file / The docker-compose.yml file
- docker-compose command
- about / The docker-compose command
- docker-compose tool
- about / Orchestrate containers using docker-compose
- using / Orchestrate containers using docker-compose
- installing / Installing docker-compose
- options / The docker-compose command
- --verbose option / The docker-compose command
- --version option / The docker-compose command
- -f, --file <file> option / The docker-compose command
- -p, --project-name <name> option / The docker-compose command
- build command / The docker-compose command
- kill command / The docker-compose command
- logs command / The docker-compose command
- port command / The docker-compose command
- ps command / The docker-compose command
- pull command / The docker-compose command
- rm command / The docker-compose command
- run command / The docker-compose command
- scale command / The docker-compose command
- start command / The docker-compose command
- stop command / The docker-compose command
- up command / The docker-compose command
- docker-compose version 1.2.0
- image / The docker-compose.yml file
- build / The docker-compose.yml file
- command / The docker-compose.yml file
- links / The docker-compose.yml file
- external_links / The docker-compose.yml file
- ports / The docker-compose.yml file
- expose / The docker-compose.yml file
- volumes / The docker-compose.yml file
- volumes_from / The docker-compose.yml file
- environment / The docker-compose.yml file
- env_file / The docker-compose.yml file
- extends / The docker-compose.yml file
- net / The docker-compose.yml file
- pid / The docker-compose.yml file
- dns / The docker-compose.yml file
- cap_add / The docker-compose.yml file
- cap_drop / The docker-compose.yml file
- dns_search / The docker-compose.yml file
- working_dir / The docker-compose.yml file
- entrypoint / The docker-compose.yml file
- user / The docker-compose.yml file
- hostname / The docker-compose.yml file
- domainname / The docker-compose.yml file
- men_limit / The docker-compose.yml file
- privileged / The docker-compose.yml file
- restart / The docker-compose.yml file
- stdin_open / The docker-compose.yml file
- tty / The docker-compose.yml file
- cpu_shares / The docker-compose.yml file
- docker.io script
- used, for installing latest Docker / Installing the latest Docker using docker.io script
- docker attach subcommand / Working with an interactive container
- Docker container
- about / An introduction to Docker, A Docker container
- running / Running the first Docker container
- running, on Amazon Web Services (AWS) / Running a Docker container on Amazon Web Services
- using, as runtime environment / Using a Docker container as a runtime environment
- process level isolation, providing / Process level isolation for Docker containers
- securing / Are Docker containers secure enough?
- security facets / The security facets – virtual machines versus Docker containers
- security features / The security features of containers
- Docker engine
- about / An introduction to Docker
- installing / Installing the Docker engine
- installing, from Ubuntu package / Installing from the Ubuntu package repository
- Docker events command
- about / The Docker events command
- Docker exec command
- about / The Docker exec command
- Dockerfile
- about / Docker's integrated image building system, A quick overview of the Dockerfile's syntax
- syntax / A quick overview of the Dockerfile's syntax
- best practices, for writing / Best practices for writing Dockerfiles
- Dockerfile build instructions
- about / The Dockerfile build instructions
- FROM instruction / The FROM instruction
- MAINTAINER instruction / The MAINTAINER instruction
- COPY instruction / The COPY instruction
- ADD instruction / The ADD instruction
- ENV instruction / The ENV instruction
- USER instruction / The USER instruction
- WORKDIR instruction / The WORKDIR instruction
- VOLUME instruction / The VOLUME instruction
- EXPOSE instruction / The EXPOSE instruction
- RUN instruction / The RUN instruction
- CMD instruction / The CMD instruction
- ENTRYPOINT instruction / The ENTRYPOINT instruction
- ONBUILD instruction / The ONBUILD instruction
- .dockerignore file / The .dockerignore file
- Docker Hub
- about / An introduction to Docker, Understanding the Docker Hub
- Docker Registry / Understanding the Docker Hub
- URL / Understanding the Docker Hub
- Sign Up process / Understanding the Docker Hub
- images, pushing to / Pushing images to the Docker Hub
- private repositories / Private repositories on the Docker Hub
- organization, creating / Organizations and teams on the Docker Hub
- team, creating / Organizations and teams on the Docker Hub
- REST APIs / The REST APIs for the Docker Hub
- Docker Hub Registry
- Docker image
- downloading / Downloading the first Docker image
- about / Docker images and containers
- Debian distribution / Docker images and containers
- working with / Working with Docker images
- Docker Hub Registry / Docker Hub Registry
- searching / Searching Docker images
- Docker image management
- docker images subcommand
- categories / Working with Docker images
- docker inspect subcommand / Retrieving the container port
- Docker layer
- about / A Docker layer
- Docker logs command
- about / The Docker logs command
- docker logs subcommand / Launching a container as a daemon
- docker pause subcommand / Controlling Docker containers
- docker port subcommand / Retrieving the container port
- Docker ps command
- about / The Docker ps command
- docker ps subcommand
- CONTAINER ID / Working with an interactive container
- IMAGE / Working with an interactive container
- COMMAND / Working with an interactive container
- CREATED / Working with an interactive container
- STATUS / Working with an interactive container
- PORTS / Working with an interactive container
- NAMES / Working with an interactive container
- Docker registry
- index / The Docker registry and index
- characteristics / The Docker registry and index
- features / The Docker registry and index
- reference / The Docker registry and index
- use cases / Docker registry use cases
- Docker Registry
- about / Docker Registry
- Docker Repository
- about / Docker Repository
- docker run subcommand / Launching a container as a daemon
- Docker setup
- about / Understanding the Docker setup
- client server communication / Client server communication
- Docker stats command
- about / The Docker stats command
- Docker terms
- Docker image / Docker images and containers
- Docker layer / A Docker layer
- Docker container / A Docker container
- Docker Registry / Docker Registry
- Docker Repository / Docker Repository
- Docker testing
- integrating, into Jenkins / Integrating Docker testing into Jenkins
- Jenkins environment, preparing / Preparing the Jenkins environment
- automating / Automating the Docker testing process
- Docker top command
- about / The Docker top command
- docker unpause subcommand / Controlling Docker containers
E
- ENTRYPOINT instruction
- about / The ENTRYPOINT instruction
- ENV instruction
- about / The ENV instruction
- environment variables
- NAME / Linking containers
- ENV / Linking containers
- PORT / Linking containers
- ExposedPorts object / Retrieving the container port
- EXPOSE instruction
- about / The EXPOSE instruction
F
- FROM instruction
- about / The FROM instruction
H
- host data
- sharing / Sharing host data
- practicality, of host data-sharing / The practicality of host data sharing
I
- image
- pushing. to newly created Docker registry / Push the image to the newly created Docker registry
- images
- pushing, to Docker Hub / Pushing images to the Docker Hub
- automated build process, implementing / Automating the building process for images
- interactive container
- working with / Working with an interactive container
- changes, tracking / Tracking changes inside containers
- Docker containers, controlling / Controlling Docker containers
- housekeeping containers / Housekeeping containers
- images, building from / Building images from containers
- launching, as daemon / Launching a container as a daemon
- Interprocess Communication (IPC) namespaces / Process level isolation for Docker containers
- IPC namespace
- about / Resource isolation
- IT elasticity
- enabling / The future
J
- Jenkins
- Docker testing, integrating into / Integrating Docker testing into Jenkins
- Jenkins environment
- preparing / Preparing the Jenkins environment
K
- kernel namespaces
- about / Resource isolation
M
- MAINTAINER instruction
- about / The MAINTAINER instruction
- Mandatory Access Control (MAC) / Security-Enhanced Linux for container security
- microservice architecture / Orchestration of containers
- mockredis
- Mount namespace
- about / Resource isolation
- Multi-Category security (MCS) / Security-Enhanced Linux for container security
- Multi -Category Security (MCS) / Security-Enhanced Linux for container security
- Multi-Level security (MLS) / Security-Enhanced Linux for container security
N
- Network Address Translation (NAT) / Network Address Translation for containers
- Network Attached Storage (NAS) / Process level isolation for Docker containers
- network configuration lists, container networking
- bridge / A brief overview of container networking
- gateway / A brief overview of container networking
- IP address / A brief overview of container networking
- IPPrefixLen / A brief overview of container networking
- PortMapping / A brief overview of container networking
- ports / A brief overview of container networking
- Network namespace
- about / Resource isolation
- Node.js / Common usage
- nsenter
- about / Installing and using nsenter
- installing / Installing and using nsenter
- using / Installing and using nsenter
O
- ONBUILD instruction
- about / The ONBUILD instruction
- orchestration, of containers
- about / Orchestration of containers
- docker-compose tool, used / Orchestrate containers using docker-compose
- docker-compose tool, installing / Installing docker-compose
- docker-compose.yml file / The docker-compose.yml file
- docker-compose command / The docker-compose command
- common usage / Common usage
P
- Parent Process ID (PPID) / Process level isolation for Docker containers
- PID namespace
- about / Resource isolation
- portability
- enabling / The future
- PortBindings object / Retrieving the container port
- Ports object / Retrieving the container port
- private repositories, Docker Hub
- process level isolation, for Docker containers
- about / Process level isolation for Docker containers
- providing / Process level isolation for Docker containers
- control groups (cgroups) / Control groups
- public key infrastructure (PKI) / Digital signature verification
- Python Web Server Gateway Interface (WSGI) HTTP server / Step 1 – Deployment of the index components and the registry from GitHub
R
- Redis / Common usage
- repository management, Docker Hub
- user repository, creating / The REST APIs for the Docker Hub
- user repository, deleting / The REST APIs for the Docker Hub
- library repository, creating / The REST APIs for the Docker Hub
- library repository, deleting / The REST APIs for the Docker Hub
- user repository images, updating / The REST APIs for the Docker Hub
- user repository images, listing / The REST APIs for the Docker Hub
- library repository images, updating / The REST APIs for the Docker Hub
- library repository images, listing / The REST APIs for the Docker Hub
- token for library repository, authorizing / The REST APIs for the Docker Hub
- token for user repository, authorizing / The REST APIs for the Docker Hub
- REST APIs, Docker Hub
- about / The REST APIs for the Docker Hub
- restart command / Controlling Docker containers
- root privilege
- about / The root privilege – impacts and best practices
- trusted user control / The trusted user control
- non-root containers / Non-root containers
- Docker images, loading / Loading the Docker images and the security implications
- security implications / Loading the Docker images and the security implications
- emerging security approaches / The emerging security approaches
- RUN instruction
- about / The RUN instruction
S
- Secure Sockets Layer (SSL) / Step 1 – Deployment of the index components and the registry from GitHub
- security, Docker container
- root privilege / The root privilege – impacts and best practices
- Security-Enhanced Linux (SELinux)
- about / Security-Enhanced Linux for container security
- for container security / Security-Enhanced Linux for container security
- benefits / SELinux-inspired benefits
- security features, Docker container
- about / The security features of containers
- resource isolation / Resource isolation
- resource accounting and control / Resource accounting and control
- service computing (SC) / Orchestration of containers
- SIGKILL signal / Controlling Docker containers
- SIGTERM signal / Controlling Docker containers
- Storage Area Network (SAN) / Process level isolation for Docker containers
T
- Test-driven development (TDD)
- troubleshooting
- Docker / Troubleshooting
U
- use cases, Docker registry
- pull or download an image / Docker registry use cases
- push an image / Docker registry use cases
- delete an image / Docker registry use cases
- USER instruction
- about / The USER instruction
- user management, Docker Hub
- user login / The REST APIs for the Docker Hub
- user register / The REST APIs for the Docker Hub
- update user / The REST APIs for the Docker Hub
- UTS namespace
- about / Resource isolation
V
- virtual machines
- versus Docker container / The security facets – virtual machines versus Docker containers
- virtual machines (VM)
- about / An introduction to Docker
- VOLUME instruction
- about / The VOLUME instruction
W
- WORKDIR instruction
- about / The WORKDIR instruction
Y
- YAML Ain't Markup Language (YAML) format file / The docker-compose.yml file