What do you think?
Rate this book
Docker Security: Using Containers Safely in Production
To use Docker safely, in both production and development, you need to be aware of the potential security issues and the major tools and techniques for securing container-based systems. In this O’Reilly report, Adrian Mouat—Chief Scientist at Container Solutions—provides guidance and advice for developing container security policies and procedures.
Mouat addresses threats such as kernel exploits, DoS attacks, container breakouts, and poisoned images throughout the report with solutions that include defense-in-depth (using the analogy of a castle’s layered defenses) and least privilege.
Mouat addresses threats such as kernel exploits, DoS attacks, container breakouts, and poisoned images throughout the report with solutions that include defense-in-depth (using the analogy of a castle’s layered defenses) and least privilege.
ebook
First published August 17, 2015
1 person is currently reading
22 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 - 5 of 5 reviews
July 23, 2017
A meaty deep-dive into securing Docker containers. This is definitely a book where you'll want to make notes as you go along. It was my first exposure to many of these tips and tricks, so I got a lot out of it.
May 13, 2018
Some of the advice there is a bit dated now, but most of it still applies. Short and useful read for anyone thinking about deploying containers to production environments.
November 23, 2016
Very reasonable set of tips to apply in your infrastructure to harden your Docker container security.
Most of them don't take much time to apply and it's usually within a day or two.
There's a good amount of reason why Docker containers **may** be insecure in some cases.
A good note to take is that there's no "if" in the tips meaning that people may take the tips wrongly and apply them in a zealot-like manner. Not everything is applicable for everyone meaning that by trying to do good and harden the security, you'll have more troubles than benefits. Think wisely whether it's worth in your infrastructure.
Most of them don't take much time to apply and it's usually within a day or two.
There's a good amount of reason why Docker containers **may** be insecure in some cases.
A good note to take is that there's no "if" in the tips meaning that people may take the tips wrongly and apply them in a zealot-like manner. Not everything is applicable for everyone meaning that by trying to do good and harden the security, you'll have more troubles than benefits. Think wisely whether it's worth in your infrastructure.
April 21, 2021
I'm migrating all my reviews to my blog. I'm keeping the old version here (because it makes sense to do it) but you can read the latest one on my blog: https://pothix.com/dockersecuritybook
It's a good book for who is using or planning to use Docker in production. There are some very good tips that are not so obvious about Docker.
It's a good book for who is using or planning to use Docker in production. There are some very good tips that are not so obvious about Docker.
Read
August 19, 2017To use Docker safely, in both production and development, you need to be aware of the potential security issues and the major tools and techniques for securing container-based systems. In this O’Reilly report, Adrian Mouat—Chief Scientist at Container Solutions—provides guidance and advice for developing container security policies and procedures.
Displaying 1 - 5 of 5 reviews