Improving Docker Security: A Better Way To Secure Your Container Network
Using Linux containers like those enabled by Docker provides a perfect encapsulation method to package application components, or micro-services. Is there any need to worry about Docker security?
Some would argue that just the process of deploying applications as container based micro-services improves overall security and reduces the applications attack surface.
Let’s assume that everyone follows the Docker security best practice guide and:
- Secures and hardens host machines,
- Scans all container images for vulnerabilities,
- Sets upper limits on resource usages such as memory, CPU, volume.
If application containers do not need talk to the outside world or other containers, it should be easy to run them in a relatively safe and isolated environment. Even if one container is bad, is hacked, or goes rogue, it won’t be able to impact or cause issues on other containers or applications.
Learn more and read the entire article here, Improving Docker Security: A Better Way To Secure Your Container Network
from the fine folks at NeuVector.