Containers are standard units of software that package code and its related dependencies to enable applications to run reliably in different computing environments. Container images are lightweight executable packages of software that include all the elements necessary to run an application, including code, system tools, system libraries, settings, and runtime. At runtime, container images become containers, and they always run the same way, regardless of which infrastructure they run on. Kubernetes, an open-source container orchestration system, automates software deployment, scaling, and management. These two technologies are essential for building cloud-native apps or modernizing legacy applications. It is important to understand, however, that when you use a container image it is a template, and everything inside that image is contained in the container that is the running instance of that template. If your container image has dangerous capabilities, every running container using that image will as well.
The post Fairwinds Insights Basics Tutorial: Avoid Containers Running with Dangerous Capabilities appeared first on Security Boulevard.
Read MoreSecurity Boulevard