Hi All, this document deals with how to secure a docker.
As you all know this is the era of microservices, where the services are deployed in docker container using any of these orchestration tools like Docker swarm, Kubernates. Before moving for production deployment its recommended to harden the docker nodes, Docker images, and Docker containers.

Here will show you how to harden, this benchmark is fully by CIS( Center of Information security).
These are the standards given by CIS.

Step 1: Login to docker node,
Step 2: Install git

For ubuntu

apt-get install git

For Centos

yum install git

Step 3: Download CIS benchmark tool for Docker

git clone https://github.com/docker/docker-bench-security.git

Step 4: Now Run, the benchmark tool.

 

 sh docker-bench-security.sh

Step 5: Now wait for some time to get the script executes completely. Once it completes you can see the below sample output, where it gives you the which all configuration got Passed and failed.


Step 6: Now it’s the time to fix it. You can check this document to fix all the configuration. Make sure that you have fixed all the line items before going for production.

https://success.docker.com/api/asset/.%2Frefarch%2Fsecurity-best-practices%2FCIS_Docker_Community_Edition_Benchmark_v1.1.0.pdf

NOTE: This only for docker community edition

© 2019, Techrunnr. All rights reserved.

#1
#2
#3
Questions Answered
Articles Written
Overall Points
Categories: docker

Prabhin Prabharkaran

He is Technical professional. He is a person who loves to share tricks and tips on the Internet. He Posts what he does!!

0 Comments

Leave a Reply

Please wait...

Subscribe to our newsletter

Want to be notified when our article is published? Enter your email address and name below to be the first to know.