Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


mdf



2621 posts

Uber Geek

Trusted
Subscriber

#233421 15-Apr-2018 21:55
Send private message

I'll start by saying I am not any kind of developer, and apologising in advance for any particularly stupid queries.

 

I've been playing around with some applications at home on a small single board Ubuntu server, installed via Docker (each of those steps was itself a learning experience). Everything is working well and I'd now like to share some of what I've done with others. I was all set to install what I needed on a Vultr one click Docker install, but then noticed this:

 

 

Security

 

Fully securing a system that runs containers is an involved task. This task includes minimizing the attack surface on the Docker daemon. For a system that intends to run containers comparable to how a normal system would run binary apps, it is not as much of a concern. But for multi-tenant container configurations, or container configurations that need isolation (such as for credit card processing), securing the Docker daemon is more important.

 

 

How worried should I be about this? Right now, I only intend to install a very limited number of Docker applications - likely only one would be running at a time - the main application I was to use has a pre-compiled docker application; installing manually is pretty convoluted. The application itself has a permissioning system, and even then, all the data will be for demonstration only and I don't really care if anyone sees it.

 

But I don't want to be that guy who's incorrectly installed application hosts a botnet or something.


Create new topic
4163 posts

Uber Geek

Trusted
Lifetime subscriber

  #1996707 16-Apr-2018 07:26
Send private message

Just keep your base Ubuntu server current with security updates, and your docker images current,  and you should be fine.

 

 





Create new topic




News »

D-Link A/NZ extends COVR Wi-Fi EasyMesh System series with new three-pack
Posted 4-Aug-2020 15:01


New Zealand software Rfider tracks coffee from Colombia all the way to New Zealand businesses
Posted 3-Aug-2020 10:35


Logitech G launches Pro X Wireless gaming headset
Posted 3-Aug-2020 10:21


Sony Alpha 7S III provides supreme imaging performance
Posted 3-Aug-2020 10:11


Sony introduces first CFexpress Type A memory card
Posted 3-Aug-2020 10:05


Marsello acquires Goody consolidating online and in-store marketing position
Posted 30-Jul-2020 16:26


Fonterra first major customer for Microsoft's New Zealand datacentre
Posted 30-Jul-2020 08:07


Everything we learnt at the IBM Cloud Forum 2020
Posted 29-Jul-2020 14:45


Dropbox launches native HelloSign workflow and data residency in Australia
Posted 29-Jul-2020 12:48


Spark launches 5G in Palmerston North
Posted 29-Jul-2020 09:50


Lenovo brings speed and smarter features to new 5G mobile gaming phone
Posted 28-Jul-2020 22:00


Withings raises $60 million to enable bridge between patients and healthcare
Posted 28-Jul-2020 21:51


QNAP integrates Catalyst Cloud Object Storage into Hybrid Backup solution
Posted 28-Jul-2020 21:40


Vector and AWS join forces to accelerate the future of energy
Posted 28-Jul-2020 21:35


JBL launches new mobile earbuds and PC speakers
Posted 22-Jul-2020 16:04



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.