MAC and Seccomp
Explore how Docker integrates Linux Mandatory Access Control technologies like AppArmor and SELinux, along with seccomp profiles, to enforce container security. Understand default protections, customization challenges, and how these tools build a layered defense to secure Docker environments effectively.
We'll cover the following...
We'll cover the following...
Mandatory Access Control systems
Docker works with major Linux MAC technologies such as AppArmor and SELinux.
Depending on your Linux distribution, Docker applies default AppArmor or SELinux profiles to all new containers, and according to the Docker documentation, the default profiles are moderately protective while providing wide application ...