While Docker containers provide many great security features out of the box, there are still many important considerations to ensure your application and data are protected.

In this video, I share five techniques that can help make your production containers more secure!

Timestamps:

• 0:00 - Intro
• 0:34 - Example webserver code
• 0:48 - Naive Dockerfile
• 1:00 - Tip #1: Don’t run the container as the root user
• 1:37 - Tip #2: Use a multi-stage build + distroless base image
• 2:54 - Tip #3: Harden the security of the host system
• 3:43 - Tip #4: Use a container image scanner to detect vulnerabilities
• 4:47 - Tip #5: Don’t install/configure things within the Dockerfile without understanding the potential risks
• 5:15 - Closing thoughts

Code can be found here:
https://github.com/sidpalas/devops-directive

#docker #security