Lab
A Cloud Guru

Analyzing a Dockerfile for Security Best Practices

Dockerfiles are the source of many container images. Many bad security practices that affect images begin inside a Dockerfile. This lab will give you some hands-on experience with analyzing a Dockerfile and locating settings that could cause unnecessary security risks in the resulting image.

Try for free Contact sales

Path Info

Level

Advanced

Duration

30m

Published

Jun 04, 2021

Challenge

Check the securi-api Dockerfile

You can find the Dockerfile at /home/cloud_user/securi-api/Dockerfile. This application is a simple Nginx webserver and should not need any additional software.

Edit the file to remove any major security issues or bad security practices.
Challenge

Check the securi-webserver Dockerfile

You can find the Dockerfile at /home/cloud_user/securi-webserver/Dockerfile.

Edit the file to remove any major security issues or bad security practices.

If you need an OS user, you can use nginxuser.
Challenge

Check the securi-users Dockerfile

You can find the Dockerfile at /home/cloud_user/securi-users/Dockerfile.

Edit the file to remove any major security issues or bad security practices.

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.