
Learn foundational Docker build security by following best practices for Dockerfiles, including avoiding root user accounts, copying only necessary files, using multi-stage builds, and gradually securing images with practical examples.
Install docker using the official instructions, update the package manager, install prerequisites, add the docker GPG key, verify with docker run hello-world, and add your user to the docker group.
Discover why secrets should never be embedded in docker images, environment variables, or build args, and learn to use dedicated secret management platforms like Carbonetti secrets and secret worlds.
avoid installing and running administrative services inside Docker build images; containers should run a single process, reducing surface area and preventing potential container escapes.
This course introduces students to the security concepts associated with Docker builds. Docker is a popular software and it is widely used in Information Technology Industry. It's popularity also brings a larger attack surface and thus it is important to understand it's security aspects to be able to protect Docker containers.
One of the first steps in building secure Docker images is to write the Dockerfile with build instructions by following security best practices. This is the first stage of hardening your Docker containers. This course provides various tips and techniques with practical examples to produce secure docker builds.
This course is designed for students with any experience. If you never used Docker, its fine we have covered the basics and we will discuss how to instal Docker. If you have used Docker for containerizing your applications, thats even better. You know how to build docker images. So this course will build your skills on top of it.
It should be noted that this course is different from the other Docker Security course we published earlier. While the other courses focus completely on attacks and how to penetrate, this course's primary focus is to show the defences and best practices to protect containers from security issues.