Security Tips to run Docker in Production

preview_player
Показать описание
When you are designing a production environment security is essential. All the Docker ecosystem but in particular Docker Swarm allows us to ship our containers out of our laptop, how can we make this process safe? During my talk, I will share tips around production environment, immutability and how troubleshooting common attack as code injection with Docker. Static analysis of our images, content trust with Notary to make our journey secure.
How can we setup a cluster on the main cloud providers with VPN and node labeling to expose only a portion of our cluster? I will also show what Docker provides (Content Trust, Static Analysis) but also open source alternatives as Notary, centos/clair and Cilium. In the end of this talk, we had a better idea around how manage Docker in production.

Gianluca Arbezzano is Software Engineer at InfluxData. The main way to improve and grow is to share what you do to catch feedback to expand my points of view. I am an enthusiast open source contributor and maintainer of different projects in different languages. DevOps evangelist and Docker Captain I am happy to make my environment efficient and secure for me and my team.
  1. DevOps Conference
  2. DevOps
  3. Docker
  4. Container
  5. Security
Рекомендации по теме
Security Tips to 0:51:17

Security Tips to run Docker in Production

How to secure 0:05:52

How to secure your Docker containers! (5 practical tips with example Dockerfiles! 🐳)

Docker security best 0:11:10

Docker security best practices| How to secure your container.

Never use a 0:26:21

Never use a Docker container without doing this first! (And don't create one either!)

100+ Docker Concepts 0:08:28

100+ Docker Concepts you Need to Know

Top 8 Docker 0:18:27

Top 8 Docker Best Practices for using Docker in Production

Docker Security Essentials 0:53:32

Docker Security Essentials | How To Secure Docker Containers

Container Security Explained 0:06:51

Container Security Explained

18 Weird and 0:26:18

18 Weird and Wonderful ways I use Docker

The super basics 0:00:58

The super basics of Docker in under a minute

How I Learned 0:49:34

How I Learned Docker Security the Hard Way (So You Don’t Have To)

Docker Security Best 0:34:44

Docker Security Best Practices: 20 Tips for Fortifying Your Container Environment

Docker bench security 0:05:12

Docker bench security for docker security assessments

you need to 0:23:19

you need to learn Docker RIGHT NOW!! // Docker Containers 101

Building a Secure 0:42:26

Building a Secure Docker Application

DOCKER SECURITY | 0:05:03

DOCKER SECURITY | EXPLAINED & BEST PRACTICES |

How to Harden 0:07:56

How to Harden Docker Images to Enhance Security

Docker Container Security 0:36:21

Docker Container Security

Self-Hosting Security Guide 0:18:43

Self-Hosting Security Guide for your HomeLab

Top 10 Docker 0:41:16

Top 10 Docker Container Security Best Practices with Tutorial

How to protect 0:30:39

How to protect Linux from Hackers // My server security strategy!

How to secure 0:03:48

How to secure Docker Containers - Container Security Best Practices

Top 5 Ways 0:00:59

Top 5 Ways to Secure Docker Containers in 1 minute #Kubesimplify #Docker Containers #Docker Tips

Docker Tips for 1:01:07

Docker Tips for Better Security

Комментарии
Автор

this is a great intro talk that is very, very practical for people working in enterprises with scattered/nascent container envs where basically no one has any idea what they're doing

jonassteinberg
Автор

... very nice talk about docker security introducing a lot of possibilities to protect your docker container environment ... thanx for introduction the nice apparmor policy feature and the (great) cilium project as iptables overlay ... keep going on Giabluca Arbezzano :)

relicfrog
Автор

DevOps and Containers Security: Security and monitoring in Docker Containers
Through this book, we will introduce the DevOps tools ecosystem and the main containers orchestration tools through an introduction to some platforms such as Kubernetes, Docker Swarm, and OpenShift.Among other topics, both good practices will be addressed when constructing the Docker images as well as best security practices to be applied at the level of the host in which those containers are executed, from Docker's own daemon to the rest of the components that make up its technological stack.We will review the topics such as static analysis of vulnerabilities on Docker images, the signing of images with Docker Content Trust and their subsequent publication in a Docker Registry will be addressed.
Also, we will review the security state in Kubernetes. In the last section, we will review container management and administration open source tools for IT organizations that need to manage and monitor container-based applications, reviewing topics such as monitoring, administration, and networking in Docker.What will you learn:

● Learn fundamental DevOps skills and tools, starting with the basic components and concepts of Docker
● Learn about Docker as a platform for the deployment of containers and Docker images taking into account the security of applications
● Learn about tools that allow us to audit the security of the machine where we execute Docker images, finding out how to secure your Docker host
● Learn how to secure your Docker environment and discover vulnerabilities and threats in Docker images
● Learn about creating and deploying containers in a security way with Docker and Kubernetes
● Learn about monitoring and administration in Docker with tools such as cadvisor, sysdig, portainer, and Rancher.

JoseManuelOrtegadev