Book Image

Securing Docker

By : Scott Gallagher
Book Image

Securing Docker

By: Scott Gallagher

Overview of this book

<p>With the rising integration and adoption of Docker containers, there is a growing need to ensure their security.</p> <p>The purpose of this book is to provide techniques and enhance your skills to secure Docker containers easily and efficiently. The book starts by sharing the techniques to configure Docker components securely and explore the different security measures/methods one can use to secure the kernel.</p> <p>Furthermore, we will cover the best practices to report Docker security findings and will show you how you can safely report any security findings you come across. Toward the end, we list the internal and third-party tools that can help you immunize your Docker environment.</p> <p>By the end of this book, you will have a complete understanding of Docker security so you are able to protect your container-based applications.</p>

Related Content you might be interested in

Current Title:

Small book image
Securing Docker
Scott Gallagher
Mar, 2016 | 126 pages
No titles found
Table of Contents (15 chapters)
Securing Docker
Securing Docker
Credits
Credits
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Securing Docker Hosts
Securing Docker Hosts
Docker host overview
Discussing Docker host
Virtualization and isolation
Attack surface of Docker daemon
Securing Docker hosts
Docker Machine
SELinux and AppArmor
Auto-patching hosts
Summary
2
Securing Docker Components
Securing Docker Components
Docker Content Trust
Docker Subscription
Docker Trusted Registry
Docker Registry
Summary
3
Securing and Hardening Linux Kernels
Securing and Hardening Linux Kernels
Linux kernel hardening guides
Linux kernel hardening tools
Summary
4
Docker Bench for Security
Docker Bench for Security
Docker security – best practices
Docker – best practices
CIS guide
The Docker Bench Security application
Summary
5
Monitoring and Reporting Docker Security Incidents
Monitoring and Reporting Docker Security Incidents
Docker security monitoring
Docker CVE
Mailing lists
Docker security reporting
Additional Docker security resources
Summary
6
Using Docker's Built-in Security Features
Using Docker's Built-in Security Features
Docker tools
Docker security fundamentals
Containers versus virtual machines
Summary
7
Securing Docker with Third-party Tools
Securing Docker with Third-party Tools
Third-party tools
Other third-party tools
Summary
8
Keeping up Security
Keeping up Security
Keeping up with security
Other areas of interest
Summary
Index
Index

Docker – best practices

Before we dive into the CIS guide, let's go over some of the following best practices when using Docker:

  • One application per container: Spread your applications to one per container. Docker was built for this and it makes everything easy at the end of the day. The isolation that we talked about earlier is where this is the key.

  • Review who has access to your Docker hosts: Remember that whoever has the access to your Docker hosts has the access to manipulate all your images and containers on the host.

  • Use the latest version: Always use the latest version of Docker. This will ensure that all the security holes have been patched and you have the latest features as well.

  • Use the resources: Use the resources available if you need help. The community within Docker is huge and immensely helpful. Use their website, documentation, and the Internet Relay Chat (IRC) chat rooms to your advantage.

Previous Section
End of Section 3
Next Section