Finally... a decent security tool for Docker


For all of Docker's benefits and success, there has always remained an inconvenient truth: container security.  Like most set-it-and-forget-it solutions, many Docker users forget to implement an ongoing and regular security plan for keeping their containers patched.  The problem is that most Docker users simply download an "NGINX container" or "Ruby container" and they get their runtime or stack of choice but then don't consider that container comes with its own full-blown OS with many other components that need to be patched and upgraded frequently.  The result: many Docker containers are insecure.

That sad reality may be changing, though, with the introduction of CoreOS' Clair -- an open source security scanner and alerting tool that efficiently monitors your containers and notifies you when they need to be patched.  Sweet!

Comments

Popular Posts