habr (@habr@zhub.link)
gh0stEdit: как скрытно заразить Docker-образ, обходя его подпись и историю
Docker и контейнеризация давно стали стандартом. Мы подписываем образы, сканируем их на уязвимости, используем приватные реестры. Кажется, что цепочка поставки надёжно защищена. Но исследователи показали атаку gh0stEdit ( arxiv.org
https://habr.com/ru/articles/947670/
#docker #контейнеры #безопасность #supply_chain #уязвимости #devsecops #подпись_образов #cicd #эксплуатация
Show Original Post
clonbg (@clonbg@masto.es)
Mantener actualizados los contenedores Docker con Watchtower https://myblog.clonbg.es/mantener-actualizados-los-contenedores-docker-con-watchtower/ #Docker #Servicios https://clonbg.es
Show Original Post
grau (@grau@mastodon.gamedev.place)
Added the 4.5 version to my #godotengine #docker file. Feel free to use: https://hub.docker.com/r/dunkelgrau/godot
Show Original Post
ngate (@ngate@mastodon.social)
🐳 Oh, look, someone crammed a 1999 #IRC client into a modern #Docker container. Because nothing says "cutting-edge tech" like using a 24-year-old chat tool wrapped in an overhyped shipping container. 🚢🎉
https://hub.docker.com/_/irssi #VintageTech #RetroChat #DockerContainer #HackerNews #ngated
Show Original Post
h4ckernews (@h4ckernews@mastodon.social)
Irssi: IRC Client in a Docker Image
https://hub.docker.com/_/irssi
#HackerNews #Irssi #Docker #IRC #Client #DockerImage #IRC #Community
Show Original Post
CuratedHackerNews (@CuratedHackerNews@mastodon.social)
Irssi: IRC Client in a Docker Image
https://hub.docker.com/_/irssi
Show Original Post
r (@r@fed.brid.gy)
Outline: My Favorite Self-hosted Markdown Editor
https://fed.brid.gy/r/https://gardinerbryant.com/outline-my-favorite-self-hosted-markdown-editor/
Show Original Post
admin (@admin@mastodon.raddemo.host)
How to Install and Run #Docker Engine on #AlmaLinux VPS (5 Minute Quick-Start Guide) This article provides a guide for how to install and run Docker Engine on AlmaLinux VPS server.
Introduction
Docker is a powerful platform that allows you to create, deploy, and manage containerized applications with ease. If you're using AlmaLinux as your server OS, you might be wondering how to get Docker up and running efficiently. This guide ...
Continued 👉 https://blog.radwebhosting.com/how-to-install-and-run-docker-engine-on-almalinux-vps-5-minute-quick-start-guide/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #installguide #vpsguide
Show Original Post
notes (@notes@subs4social.xyz)
@Dan_Ramos@noauthority.social @RonV42@noauthority.social
it's always an adventure figuring out how to get an arbitrary file into a #Docker #container. You're supposed to have all the necessary files in the build script, I guess, that's the whole point of containerization
But fuck that
I'm using off-the-shelf official images for my shit whenever possible
Show Original Post
compi (@compi@schnauzer.cafe)
I love Docker. The upgrade to Version 4.4.4 was simply editing three values in docker-compose.yml and then a restart of all containers
Show Original Post
reddit_tech_vn_bot (@reddit_tech_vn_bot@mastodon.maobui.com)
Tôi đã chuyển từ Fedora sang Debian CLI server và đang tìm cách tổ chức 10-15 Docker container. Đặt tất cả docker-compose.yaml trong ~/docker/container_name/, mount ZFS pool tại /mnt/pool và chia sẻ qua SMB. Có nên chạy Docker với root không? Và nên cài Docker theo hướng dẫn của trang chủ hay Debian wiki? #Docker #SelfHosting #ZFS #Debian #ContainerOrganization #QuảnLýContainer #MáyChủCáNhân
https://www.reddit.com/r/selfhosted/comments/1nipnyx/how_to_organize_containers_and_docker_compose/
Show Original Post
GripNews (@GripNews@mastodon.social)
🌘 剖析容器檔案系統運作原理:從零開始建構 Docker 式容器
➤ 運用基礎 Linux 工具解構容器檔案系統的隔離魔法
✤ https://labs.iximiuz.com/tutorials/container-filesystem-from-scratch
本文透過實際操作,利用 Linux 原生工具 `unshare`、`mount` 和 `pivot_root`,逐步解析 Docker 等容器技術背後的檔案系統隔離機制。作者說明瞭掛載命名空間(mount namespace)是如何實現容器內部的獨立視圖,並透過實驗演示了掛載表的隔離效果。文章也觸及了掛載傳播(mount propagation)的概念,為理解容器如何建立其獨特的檔案系統環境提供了紮實的技術基礎。
+ 這篇文章太棒了!我一直想知道容器是如何做到檔案系統隔離的,這篇教程解釋得非常清楚,而且還有動手實作的部分。
+ 雖然我對 Linux 命名空間的瞭解不深,但作者的引導式教學讓我受益匪淺,特別是關於掛載命名空間的部分,終於有概念了。
#Linux #容器 #檔案系統 #Docker #命名空間 #掛載
Show Original Post