Docker Security 101 — Hacking and Securing Docker Containers

Docker Security 101 — Hacking and Securing Docker Containers

Part 1 — Introduction to Docker & Running Applications as ROOT User. Dear Readers, in this blog series I will cover Security issues related to Docker and how to protect against misconfigurations and attacks.

Note: This is part 1 of a multi-part series.

Introduction:

Dear Readers, in this blog series I will cover Security issues related to Docker and how to protect against misconfigurations and attacks.

Let's get started.

Docker Overview:

According to the official website of Docker, “Docker is the de facto standard to build and share containerized apps — from desktop to the cloud. We are building on our unique connected experience from code to cloud for developers and developer teams.”

In simple words, Docker provides the ability to package and run an application in an isolated environment called a container.

There are a lot of resources related to understanding docker and the references below will also be helpful;

I will list out security concerns with some tags like [Dockerfile] [Host] or [Both] so that it is easy to understand and do some review if needed.

[Dockerfile] Do Not Run Applications as ROOT User :

One of the best practices while running Docker Container is to run processes with a non-root user. This is because if a user manages to break out of the application running as root in the container, may gain root user access on the host. In addition, configuring container to user unprivileged is the best way to prevent privilege escalation attacks.

infosec containers hacking security docker

Bootstrap 5 Complete Course with Examples

Bootstrap 5 Tutorial - Bootstrap 5 Crash Course for Beginners

Nest.JS Tutorial for Beginners

Hello Vue 3: A First Look at Vue 3 and the Composition API

Building a simple Applications with Vue 3

Deno Crash Course: Explore Deno and Create a full REST API with Deno

How to Build a Real-time Chat App with Deno and WebSockets

Convert HTML to Markdown Online

HTML entity encoder decoder Online

50+ Useful Kubernetes Tools for 2020 - Part 2

Our original Kubernetes tool list was so popular that we've curated another great list of tools to help you improve your functionality with the platform.

Docker Tutorial for Beginners 8 - Build and Run C++ Applications in a Docker Container

Welcome to this on Docker Tutorial for Beginners. In this video provides an Introduction on C++ development with Docker containers. So we will see How to ship C++ Programs in Docker.

List all containers in Docker(Docker command)

We can get a list of all containers in docker using `docker container list` or `docker ps` commands.

Docker Explained: Docker Architecture | Docker Registries

Following the second video about Docker basics, in this video, I explain Docker architecture and explain the different building blocks of the docker engine; docker client, API, Docker Daemon. I also explain what a docker registry is and I finish the video with a demo explaining and illustrating how to use Docker hub.

Docker Containers!What is a Docker Container?

I never knew anything about dockers till about 7–8 weeks ago (as of writing this). I had come into contact with dockers only because of a…