While Docker containers provide many great security features out of the box, there are still many important considerations to ensure your application and data are protected.
In this video, I share five techniques that can help make your production containers more secure!
Timestamps:
- 0:00 - Intro
- 0:34 - Example webserver code
- 0:48 - Naive Dockerfile
- 1:00 - Tip #1: Don’t run the container as the root user
- 1:37 - Tip #2: Use a multi-stage build + distroless base image
- 2:54 - Tip #3: Harden the security of the host system
- 3:43 - Tip #4: Use a container image scanner to detect vulnerabilities
- 4:47 - Tip #5: Don’t install/configure things within the Dockerfile without understanding the potential risks
- 5:15 - Closing thoughts
Code can be found here:
https://github.com/sidpalas/devops-directive
#docker #security