Archive for the ‘Docker’ Category
Upgrading Docker
Dockercon #2 is underway, version 1.7.0 of Docker was released at the end of last week, and lots of other new toys are being launched. Time for some upgrades. I got used to Docker always restarting containers when the daemon restarted, which included upgrades, but that behaviour went away around version 1.3.0 with the introduction […]
Filed under: code, Docker, howto | 1 Comment
Tags: Docker, script, upgrade
BanyanOps have published a report stating that ‘Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities’, which include some of the sensational 2014 issues such as ShellShock and Heartbleed. The analysis also looks at user generated ‘general’ repositories and finds an even greater level of vulnerability. Their conclusion is that images […]
Filed under: Docker, InfoQ news, security | Leave a Comment
Tags: Docker, InfoQ, security
Container Networking Tutorial
Yesterday I delivered a tutorial as part of the Open Network Users Group (ONUG) Academy: To go through the tutorial yourself you’ll need an AWS account and an SSH client (and the Internet access and browser you’re using to read this). To complement the slides there’s a wiki on GitHub with all of the relevant command […]
Filed under: Docker, networking, presentation | 1 Comment
Tags: containers, Docker, networking, ONUG, tutorial
Docker Inc have worked with the Center for Internet Security (CIS) to produce a benchmark document [pdf] containing numerous recommendations for the security of Docker deployments. The benchmark was announced in a blog post ‘Understanding Docker Security and Best Practices’ by Diogo Mónica who was recently hired along with Nathan McCauley to lead theDocker Security […]
Filed under: Docker, InfoQ news, security | Leave a Comment
Tags: benchmark, CIS, Docker, Linux, security
ClusterHQ, the team behind Flocker, have announced Powerstrip, an Apache licensed tool to prototype Docker extensions. Powerstrip works as a proxy between the Docker command line interface (CLI) and the Docker daemon allowing the Docker API to be extended. The main advantage of this approach is that by extending the Docker interface, rather than wrapping […]
Filed under: Docker, InfoQ news | Leave a Comment
Tags: API, ClusterHQ, composition, Docker, Fig, Flocker, Powerstrip, Weave
The announcement of Rocket by CoreOS was perceived by many to be a direct challenge to Docker, particularly as it came on the eve of DockerCon Europe and threatened to overshadow news coming out at the event. Docker, Inc. CEO Ben Golub was quick to fire back with his ‘initial thoughts on the Rocket announcement’. […]
Filed under: Docker, The New Stack | Leave a Comment
Tags: CoreOS, Docker, init, Linux, Rocket, systend
Docker Networking
Here’s my presentation from container.camp: If you’re interested in a deeper dive then take a look at the Container Networking Tutorial I did for ONUG.
Filed under: Docker, networking, presentation | 2 Comments
Tags: Docker, Flocker, network, networking, ODCA, OpenVSwitch, OVS, pipework, vxlan, Weave
Weave is an overlay networking system for Docker containers. Whilst Docker can already link containers on a single host, Weave provides connectivity for containers that are spread across multiple hosts. It has been released under the Apache 2 open source license by Zettio, a new company targeting ‘apps for the zettabyte era’ founded by RabbitMQ […]
Filed under: Docker, InfoQ news, networking | Leave a Comment
Tags: Docker, InfoQ, networking, SDN, Weave
Chris Swan's Weblog 