When writing containers for a local development environment, security is often a lesser concern. This is fine as long as we never intend to put the containers we create in a production environment.

When we do want to make production-ready containers, however, our priorities change. While Docker tries to be secure by default, it can't protect us from badly configured or vulnerable applications. For that, we need to design our images to be more secure.

In this tutorial, we'll:

Outline the best practices for writing secure container images
Introduce the USER directive
Set file ownership using COPY and ADD
Use the RUN directive to set file permissions

Over the years we've developed some techniques for practicing that we wanted to share. At Drupalize.Me we take hugging seriously. In this tutorial we'll look at the art, and science, of giving a good hug. The Merriam Webster dictionary defines the word hug as; squeeze (someone) tightly in one's arms, typically to express affection.

Did you know there are all kinds of different hugs that you can give? In this tutorial we'll look at:

Defining what a hug is
Some of the many types of hugs in the world today
Precautions you may want to familiarize yourself with before hugging
And the importance of proper technique

Lets go ahead and get started shall we?

Container Security

Docker for Drupal Developers