Collaborate Disseminate
When building Docker containers I scan them with tools like Snyk and Clair. They identify vulnerabilities such as CVE’s in out of date packages in the underlying OS of the container.
How can I update these packages within th… Continue reading Keeping Docker containers up to date [migrated]
Recently, I have heard of a new virtualization tech called containers. Suppose the container has been compromised, does this mean the host is also compromised (since the container is a process on a host)? In terms of security, is a VM (vir… Continue reading If a container is compromised does that mean host also compromised?
Meet BlueCargo, a logistics startup focused on seaport terminals. The company was part of Y Combinator’s latest batch and recently raised a $3 million funding round from 1984 Ventures, Green Bay Ventures, Sound Ventures, Kima Ventures and others. If you picture a terminal, chances are you see huge piles of containers. But current sorting methods […] Continue reading BlueCargo optimizes stacks of containers for maximum efficiency
Forgive my rudimentary understanding of server security, but one thing I’ve always struggled with was understanding how to setup chroot to separate folders (which are discrete WP installations) in a /var/www directory. There … Continue reading Containerization vs. Chroot in shared hosting
Microsoft is working to extend the reach of its cognitive services with the release of new features that can run in containers.
The post Microsoft’s Bringing Cognitive Services to a Container Near You appeared first on Petri.
Continue reading Microsoft’s Bringing Cognitive Services to a Container Near You
I’m trying to improve my security knowledge on containers environments.
Recently I was playing around with Kubernetes cluster. I saw this absolutely awesome link: https://schd.ws/hosted_files/kccncna17/d8/Hacking%20and%20Ha… Continue reading Security (IP discovering) on Kubernetes
Running a Docker container process as root inside the container is considered insecure. But I have some doubts that I need to clear:
Is it still the same kind of insecure even if the container cannot mount the docker socket… Continue reading Running Docker container as Root user
Container security is not a unitary action but a multifaceted process. It involves securing the build environment using secure code control and other strategies. The procedure also necessitates securing containers’ contents via code analysis and … Continue reading Strengthen Production Systems with Container Runtime Security
This post is part 2 of a series of blog posts on container hacking. If you haven’t read the part1, you should check it out. Today I’m going to tell you about a new collection of scripts, and a lab VM for hacking containers. Both of these re… Continue reading Escaping the Whale: Things You Probably Shouldn’t Do With Docker (part 2)
This is a bit of a tough question to ask so bear with me a bit. I’ll try to be brief if I can.
Problem statement
I’m looking for a modern best practice for managing and deploying the trusted root CA certificate list of Docker containers…. Continue reading Managing trusted certificates revocation in containers in as "cloud native" means as possible