Perform Docker security configutaion

Allowed resources:

Kubernetes docs: https://kubernetes.io/docs/home/
Falco docs: https://falco.org/docs/

29 Perform Docker security configuration

Acceptance criteria In the host docker as a container engine. We need to perform the following tasks to enhance Docker security:
- remove access to docker daemon for user user.
Docker is being exposed through the TCP socket. This is considered as a high security risk. We need to stop exposing it and perform some security enhancements.
- Docker socket /var/run/docker.sock is configured to be used for users that are in docker group. Change docker socket permissions to make it available only for root user and root group.
Acceptance criteria:
- developer user is not able to use docker anymore.
- docker is NOT being exposed using TCP.
- docker.sock has proper permissions.

29	Perform Docker security configuration
Acceptance criteria	In the host docker as a container engine. We need to perform the following tasks to enhance Docker security: - remove access to docker daemon for user `user`. Docker is being exposed through the TCP socket. This is considered as a high security risk. We need to stop exposing it and perform some security enhancements. - Docker socket `/var/run/docker.sock` is configured to be used for users that are in docker group. Change docker socket permissions to make it available only for `root` user and `root` group. Acceptance criteria: - `developer` user is not able to use docker anymore. - docker is NOT being exposed using TCP. - `docker.sock` has proper permissions.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Perform Docker security configutaion

FilesExpand file tree

README.MD

Latest commit

History

README.MD

File metadata and controls

Perform Docker security configutaion