/docs/MyDocs : revision 28

To get this branch, use:

bzr branch
http://darksoft.org/webbzr/docs/MyDocs

« back to all changes in this revision

Viewing changes to Administration/Server/Containers/docker/security.txt

Committer: Suren A. Chilingaryan
Date: 2017-04-03 02:45:17 UTC
Revision ID: csa@suren.me-20170403024517-dwzj0z0k1cmhxm7u

Restructuring, OpenShift, Ansible, Git

files added:
Administration/Platforms/gentoo/ebuild.txt

Administration/Server/Containers

Administration/Server/Containers/docker

Administration/Server/Containers/docker/best_practices

Administration/Server/Containers/docker/best_practices/git_strategies_for_docker.html

Administration/Server/Containers/docker/compose.txt

Administration/Server/Containers/docker/docker.txt

Administration/Server/Containers/docker/kiwi.txt

Administration/Server/Containers/docker/security.txt

Administration/Server/Containers/docker/setup.txt

Administration/Server/Containers/docker/terms.txt

Administration/Server/Containers/list.txt

Administration/Server/Containers/openvz

Administration/Server/Containers/openvz/openvz.txt

Administration/Server/Network

Administration/Server/Network/dhcp.txt

Administration/Server/Network/firewall

Administration/Server/Network/firewall/firewalld.txt

Administration/Server/Network/firewall/iptables.txt

Administration/Server/Network/hints.1

Administration/Server/Network/infiniband

Administration/Server/Network/infiniband/bonding.txt

Administration/Server/Network/infiniband/infiniband.txt

Administration/Server/Network/infiniband/openmpi.txt

Administration/Server/Network/interfaces.txt

Administration/Server/Network/routing

Administration/Server/Network/routing/FW-IDS-iptables-Flowchart-2014-09-25.png

Administration/Server/Network/routing/Preventing brute force attacks using iptables recent matching.html

Administration/Server/Network/ssh.txt

Administration/Server/Network/sshtunnel.txt

Administration/Server/Orchestration

Administration/Server/Orchestration/apache

Administration/Server/Orchestration/apache/apache.txt

Administration/Server/Orchestration/apache/hadoopecosystemtable.github.io.html

Administration/Server/Orchestration/ha.txt

Administration/Server/Orchestration/openshift

Administration/Server/Orchestration/openshift/concepts.txt

Administration/Server/Orchestration/openshift/discussion.txt

Administration/Server/Orchestration/openshift/ha.txt

Administration/Server/Orchestration/openshift/heketi.txt

Administration/Server/Orchestration/openshift/kubernetes.txt

Administration/Server/Orchestration/openshift/links.txt

Administration/Server/Orchestration/openshift/network.txt

Administration/Server/Orchestration/openshift/openshift.txt

Administration/Server/Orchestration/openshift/recipes.txt

Administration/Server/Orchestration/openshift/resources.txt

Administration/Server/Orchestration/openshift/sample.txt

Administration/Server/Orchestration/openshift/security.txt

Administration/Server/Orchestration/openshift/setup.txt

Administration/Server/Orchestration/orchestration.txt

Administration/Server/Orchestration/pacemaker

Administration/Server/Orchestration/pacemaker/docs

Administration/Server/Orchestration/pacemaker/docs/BuildingHACluster.mht

Administration/Server/Orchestration/pacemaker/docs/Clusters from Scratch.mht

Administration/Server/Orchestration/pacemaker/pacemaker.txt

Administration/Server/Provisioning

Administration/Server/Provisioning/ansible

Administration/Server/Provisioning/ansible/ansible.txt

Administration/Server/Provisioning/ansible/format.txt

Administration/Server/Provisioning/ansible/inventory.txt

Administration/Server/Provisioning/ansible/modules.txt

Administration/Server/Provisioning/ansible/roles.txt

Administration/Server/Provisioning/ansible/secrets.txt

Administration/Server/Provisioning/ansible/structures.txt

Administration/Server/Provisioning/ansible/templates.txt

Administration/Server/Provisioning/ansible/variables.txt

Administration/Server/Provisioning/tools.txt

Administration/Server/Security/pam.txt

Administration/Server/Security/selinux.txt

Administration/Server/Security/sudo.txt

Administration/Server/Storage

Administration/Server/Storage/clusterfs

Administration/Server/Storage/clusterfs/ceph.txt

Administration/Server/Storage/clusterfs/fhgfs.txt

Administration/Server/Storage/clusterfs/gluster

Administration/Server/Storage/clusterfs/gluster/docs

Administration/Server/Storage/clusterfs/gluster/docs/Performance_in_a_Gluster_Systemv6F.pdf

Administration/Server/Storage/clusterfs/gluster/gluster-nfs.txt

Administration/Server/Storage/clusterfs/gluster/gluster-samba.txt

Administration/Server/Storage/clusterfs/gluster/gluster.txt

Administration/Server/Storage/clusterfs/gluster/heketi.txt

Administration/Server/Storage/clusterfs/ocfs2.txt

Administration/Server/Storage/iscsi.txt

Administration/Server/Storage/storage.txt

Administration/Server/Storage/swap

Administration/Server/Storage/swap/ramster

Administration/Server/Storage/swap/ramster.txt

Administration/Server/Storage/swap/ramster/HOWTO-v5-120214

Administration/Server/Virtualization/kvm

Administration/Server/Virtualization/kvm/kvm.txt

Administration/Server/Virtualization/kvm/libvirt.txt

Administration/Server/Virtualization/kvm/qemu.txt

Administration/Server/Virtualization/parallels

Administration/Server/Virtualization/parallels/parallels.txt

Administration/Server/Virtualization/vagrant

Administration/Server/Virtualization/vagrant/vagrant.txt

Administration/Server/Virtualization/virtualbox

Administration/Server/Virtualization/virtualbox/virtualbox.txt

SCM/compilers

SCM/compilers/gcc.txt

SCM/compilers/llvm

SCM/compilers/llvm/os-createcompilerllvm1-pdf.pdf

SCM/compilers/llvm/os-createcompilerllvm2-pdf.pdf

SCM/compilers/windows

SCM/compilers/windows/vs2005.txt

SCM/makefile

SCM/makefile/functions

SCM/makefile/macros

SCM/makefile/math

SCM/makefile/rules

SCM/makefile/variables

SCM/packaging

SCM/packaging/deb

SCM/packaging/deb/ubuntu.txt

SCM/packaging/general

SCM/packaging/general/gcc

SCM/packaging/general/gcc/gcc23compat.txt

SCM/packaging/general/kernel.txt

SCM/packaging/general/linking

SCM/packaging/general/linking/ld_assume_kernel.html

SCM/packaging/general/linking/libtool-missing_so.html

SCM/packaging/general/linking/linking.txt

SCM/packaging/osc

SCM/packaging/osc/info.txt

SCM/packaging/osc/python.txt

SCM/packaging/osc/stripping.txt

SCM/packaging/portage

SCM/packaging/rpm

SCM/packaging/rpm/distributions

SCM/packaging/rpm/distributions/mandrake.txt

SCM/packaging/rpm/rpm

SCM/packaging/rpm/rpm.addon

SCM/packaging/rpm/rpm.commands

SCM/packaging/rpm/rpm.pgp_signatures

SCM/packaging/rpm/rpm.problems

SCM/packaging/rpm/rpm.scrypt

SCM/packaging/rpm/rpm.signature

SCM/packaging/rpm/rpm.spec

SCM/packaging/rpm/rpm.unpackaged

SCM/packaging/rpm/rpm.virables

SCM/rcs

SCM/rcs/bzr

SCM/rcs/bzr/bzr.txt

SCM/rcs/bzr/bzr_plugins.txt

SCM/rcs/diff.txt

SCM/rcs/git

SCM/rcs/git/git.txt

SCM/rcs/git/git_arch.txt

SCM/rcs/git/git_config.txt

SCM/rcs/git/git_modules.txt

SCM/rcs/git/git_public.txt

SCM/rcs/git/git_recipes.txt

SCM/rcs/git/git_remote.txt

SCM/rcs/git/git_security.txt

SCM/rcs/mergers.txt

SCM/rcs/other

SCM/rcs/other/svn.txt

SCM/rcs/other/tla.txt

SCM/trac

SCM/trac/edit.txt

SCM/trac/fixes

SCM/trac/fixes/0.10

SCM/trac/fixes/0.10/recaptcharegisterplugin_trac10.tar.bz2

SCM/trac/fixes/0.10/tags

SCM/trac/fixes/0.10/tags/tags-0.4.1-upgrade.patch

SCM/trac/fixes/0.10/tags/tags-0.6-upgrade.patch

SCM/trac/fixes/0.10/trac-bazaar-ds-curtimestamp.patch

SCM/trac/fixes/0.10/trac-bazaar-ds-escape.patch

SCM/trac/fixes/0.10/tracnav-ds-noedit.patch

SCM/trac/fixes/0.11

SCM/trac/fixes/0.11/TracIncludeMacro-ds-FineGrainedPermissions.patch

SCM/trac/fixes/0.11/jsgnatt

SCM/trac/fixes/0.11/jsgnatt/jsgnatt-ds.patch

SCM/trac/fixes/0.11/jsgnatt/jsgnatt.ini

SCM/trac/fixes/0.11/jsgnatt/tracjsgantt.py

SCM/trac/fixes/0.11/tracdownloader-ds-web_ui.diff

SCM/trac/gmaps.txt

SCM/trac/problems.txt

SCM/trac/setup.txt

SCM/web

SCM/web/sourceforge-cvs

files removed:
Administration/Linux/system/network

Administration/Linux/system/network/dhcp.txt

Administration/Linux/system/network/hints.1

Administration/Linux/system/network/interfaces.txt

Administration/Linux/system/network/routing

Administration/Linux/system/network/routing/FW-IDS-iptables-Flowchart-2014-09-25.png

Administration/Linux/system/network/routing/Preventing brute force attacks using iptables recent matching.html

Administration/Linux/system/network/routing/iptables.txt

Administration/Linux/system/network/ssh.txt

Administration/Linux/system/network/sshtunnel.txt

Administration/Linux/system/security

Administration/Linux/system/security/pam.txt

Administration/Linux/system/security/sudo.txt

Administration/Server/Cluster

Administration/Server/Cluster/apache

Administration/Server/Cluster/apache.txt

Administration/Server/Cluster/apache/hadoopecosystemtable.github.io.html

Administration/Server/Cluster/bonding.txt

Administration/Server/Cluster/deployment

Administration/Server/Cluster/deployment/ansible.txt

Administration/Server/Cluster/deployment/tools.txt

Administration/Server/Cluster/ha

Administration/Server/Cluster/ha/docs

Administration/Server/Cluster/ha/docs/BuildingHACluster.mht

Administration/Server/Cluster/ha/docs/Clusters from Scratch.mht

Administration/Server/Cluster/ha/list.txt

Administration/Server/Cluster/ha/rh-ha.txt

Administration/Server/Cluster/infiniband.txt

Administration/Server/Cluster/mpi

Administration/Server/Cluster/mpi/openmpi.txt

Administration/Server/Cluster/orchestration

Administration/Server/Cluster/orchestration.txt

Administration/Server/Cluster/orchestration/kubernetes.txt

Administration/Server/Cluster/storage

Administration/Server/Cluster/storage/clusterfs

Administration/Server/Cluster/storage/clusterfs/ceph.txt

Administration/Server/Cluster/storage/clusterfs/fhgfs.txt

Administration/Server/Cluster/storage/clusterfs/gluster

Administration/Server/Cluster/storage/clusterfs/gluster/docs

Administration/Server/Cluster/storage/clusterfs/gluster/docs/Performance_in_a_Gluster_Systemv6F.pdf

Administration/Server/Cluster/storage/clusterfs/gluster/gluster-nfs.txt

Administration/Server/Cluster/storage/clusterfs/gluster/gluster-samba.txt

Administration/Server/Cluster/storage/clusterfs/gluster/gluster.txt

Administration/Server/Cluster/storage/clusterfs/ocfs2.txt

Administration/Server/Cluster/storage/iscsi.txt

Administration/Server/Cluster/storage/storage.txt

Administration/Server/Cluster/swap

Administration/Server/Cluster/swap/ramster

Administration/Server/Cluster/swap/ramster.txt

Administration/Server/Cluster/swap/ramster/HOWTO-v5-120214

Administration/Server/Virtualization/backup

Administration/Server/Virtualization/backup/openvz.txt

Administration/Server/Virtualization/containers

Administration/Server/Virtualization/containers/docker

Administration/Server/Virtualization/containers/docker/compose.txt

Administration/Server/Virtualization/containers/docker/docker.txt

Administration/Server/Virtualization/containers/docker/kiwi.txt

Administration/Server/Virtualization/containers/docker/security.txt

Administration/Server/Virtualization/containers/docker/setup.txt

Administration/Server/Virtualization/containers/docker/terms.txt

Administration/Server/Virtualization/containers/list.txt

Administration/Server/Virtualization/kvm.txt

Administration/Server/Virtualization/libvirt.txt

Administration/Server/Virtualization/parallels.txt

Administration/Server/Virtualization/qemu.txt

Administration/Server/Virtualization/virtualbox.txt

Development/autotools

Development/autotools/cvs

Development/autotools/cvs/bzr.txt

Development/autotools/cvs/bzr_plugins.txt

Development/autotools/cvs/git.txt

Development/autotools/cvs/git_config.txt

Development/autotools/cvs/mergers.txt

Development/autotools/cvs/svn.txt

Development/autotools/cvs/tla.txt

Development/autotools/diff.txt

Development/autotools/makefile

Development/autotools/makefile/functions

Development/autotools/makefile/macros

Development/autotools/makefile/math

Development/autotools/makefile/rules

Development/autotools/makefile/variables

Development/autotools/sourceforge

Development/autotools/sourceforge/sourceforge-cvs

Development/autotools/trac

Development/autotools/trac/edit.txt

Development/autotools/trac/fixes

Development/autotools/trac/fixes/0.10

Development/autotools/trac/fixes/0.10/recaptcharegisterplugin_trac10.tar.bz2

Development/autotools/trac/fixes/0.10/tags

Development/autotools/trac/fixes/0.10/tags/tags-0.4.1-upgrade.patch

Development/autotools/trac/fixes/0.10/tags/tags-0.6-upgrade.patch

Development/autotools/trac/fixes/0.10/trac-bazaar-ds-curtimestamp.patch

Development/autotools/trac/fixes/0.10/trac-bazaar-ds-escape.patch

Development/autotools/trac/fixes/0.10/tracnav-ds-noedit.patch

Development/autotools/trac/fixes/0.11

Development/autotools/trac/fixes/0.11/TracIncludeMacro-ds-FineGrainedPermissions.patch

Development/autotools/trac/fixes/0.11/jsgnatt

Development/autotools/trac/fixes/0.11/jsgnatt/jsgnatt-ds.patch

Development/autotools/trac/fixes/0.11/jsgnatt/jsgnatt.ini

Development/autotools/trac/fixes/0.11/jsgnatt/tracjsgantt.py

Development/autotools/trac/fixes/0.11/tracdownloader-ds-web_ui.diff

Development/autotools/trac/gmaps.txt

Development/autotools/trac/problems.txt

Development/autotools/trac/setup.txt

Development/compilers

Development/compilers/gcc.txt

Development/compilers/llvm

Development/compilers/llvm/os-createcompilerllvm1-pdf.pdf

Development/compilers/llvm/os-createcompilerllvm2-pdf.pdf

Development/compilers/windows

Development/compilers/windows/vs2005.txt

Development/packaging

Development/packaging/deb

Development/packaging/deb/ubuntu.txt

Development/packaging/general

Development/packaging/general/gcc

Development/packaging/general/gcc/gcc23compat.txt

Development/packaging/general/kernel.txt

Development/packaging/general/linking

Development/packaging/general/linking/ld_assume_kernel.html

Development/packaging/general/linking/libtool-missing_so.html

Development/packaging/general/linking/linking.txt

Development/packaging/osc

Development/packaging/osc/info.txt

Development/packaging/osc/python.txt

Development/packaging/osc/stripping.txt

Development/packaging/portage

Development/packaging/rpm

Development/packaging/rpm/distributions

Development/packaging/rpm/distributions/mandrake.txt

Development/packaging/rpm/rpm

Development/packaging/rpm/rpm.addon

Development/packaging/rpm/rpm.commands

Development/packaging/rpm/rpm.pgp_signatures

Development/packaging/rpm/rpm.problems

Development/packaging/rpm/rpm.scrypt

Development/packaging/rpm/rpm.signature

Development/packaging/rpm/rpm.spec

Development/packaging/rpm/rpm.unpackaged

Development/packaging/rpm/rpm.virables

files renamed:
Administration/Platforms/portage/ => Administration/Platforms/gentoo/

files modified:
Administration/Platforms/gentoo/gentoo.txt

Administration/Server/Access/desktop/vnc.txt

Administration/Software/web/mozilla.txt

Administration/problems.txt

Show diffs side-by-side

added added

removed removed

Administration/Server/Containers/docker/security.txt

Security

========

- Environment is preffered way to provide security information in containers:

- Add environment file to compose description

- Add it to .gitignore

- But it is not exactly safe as well. May be something like pass?

- ansible-value: where to store master key?

- credstash: based on Amazon AWS KMS (Key Management Service) which is free to use

- VaultProject.io: Alternative to KMS. There is an official docker image

- Alternative way to get security information from container during initial volumes setup

Older »