Topic: docker

Demystifying a Docker image

Six months ago ForAllSecure started analyzing Docker images. What does this mean?  Imagine we have a user who wants us to fuzz their application. How do they give it to us?  Do they tar it up? Do they give us access to an environment where it’s running?  Do we integrate into their build pipeline? Applications … continue reading

Mirantis obtains the Docker Enterprise Platform business from Docker

Mirantis is expanding its Kubernetes offering with the help of the Docker Enterprise Platform. The company announced it would be acquiring the business from Docker in an effort to deliver Kuberetes as a service and provide a consistent experience for developers. “The Mirantis Kubernetes technology joined with the Docker Enterprise Container Platform brings simplicity and … continue reading

Dry monitoring screenshot

ITOps Times Open-Source Project of the Week: Dry

This week we’re highlighting an open-source project, Dry, that makes it easier to manage Docker and Docker Swarm.   Dry is a terminal application that shows information about containers, images, and networks. For those running Swarm clusters, it also shows information about nodes, service, stacks, and other Swarm constructs.  In addition to showing information, it can … continue reading

6 Best Practices for Creating a Container Platform Strategy

Infrastructure and operations (I&O) leaders globally are facing demand from the C-level to use containers to speed up application delivery. But the rapid adoption of container technology does not necessarily mean that it is a fit for every organization. Containers can help enterprises modernize legacy applications and create new cloud-native applications that are both scalable … continue reading

ITOps Open-Source Project of the Week: Lazydocker

Lazydocker is an open-source project that aims to reduce the necessity of memorizing Docker commands. Created by software engineer Jesse Duffield, Lazydocker acts as a GUI for Docker and Docker-compose terminals. The rationale behind the project is that “memorising docker commands is hard. Memorising aliases is slightly less hard.” Duffield explains on the project’s GitHub … continue reading

Docker suffers from race condition flaw

It has been revealed that all Docker versions are vulnerable to a symlink-race attack. A CVE-2018-15664 vulnerability was found by software engineer Aleksa Sarai who submitted the bug to the Docker security team. “The basic premise of this attack is that FollowSymlinkInScope suffers from a fairly fundamental TOCTOU attack. The purpose of FollowSymlinkInScope is to … continue reading

Snyk: Container security requires changes in culture more than changes in technology

The main challenge organizations will face securing their containers is not the technical part, but the cultural and organizational changes. This is according to a recently released report from Snyk that focused heavily on the current state of Docker security. The report revealed that half of the top 10 free certified Docker images have known … continue reading

Google previews new Knative-based managed Kubernetes service

Google Cloud is adding a complete managed serverless offering that handles all forms of infrastructure management for DevOps teams, taking low-level programming and deployment tasks off of their hands. The new Google Cloud Run, launched at this week’s Google Cloud Next conference in San Francisco, aims to let developers move any type of code into … continue reading

Why Kubernetes will turn your data center into a smartphone

Installing and managing server software is hard, especially in corporate environments. There’s the inherent complexity of managing disparate platforms and systems, all while dealing with compliance and security policies. What is worse is that a lot of the work is repetitive, undifferentiated heavy lifting. Configuration management tools like Chef and Puppet were supposed to be … continue reading

Containerd graduates from the Cloud Native Computing Foundation

Docker’s core container runtime containerd is the latest project to graduate from the Cloud Native Computing Foundation this week. It has been more than two years since Docker decided to spin out the containerd runtime and the project joined the CNCF. Today’s announcement makes containerd the fifth project to graduate, following in the footsteps of … continue reading

“Doomsday” flaw discovered in RunC underscores potential for critical container vulnerabilities

The discovery of a major security flaw in the common open-source runtime engine for Docker, Kubernetes and other container management systems, points to an underlying risk associated with containerized applications. Researchers Adam Iwaniuk and Borys Popławsk discovered the vulnerability, CVE-2019-5736, in RunC, the common runtime engine developed by Docker and now a common Open Container … continue reading

premium Five considerations when moving toward cloud native

Building applications had rapidly become the easy part of development. Whether on the web or mobile, these applications need a place to live, and that place is constantly changing. From local servers in closets to colocation facilities to the cloud, we’ve seen rapid change over just the last few years. Now we have containers and … continue reading

Ad will close in seconds
Continue to site

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!