ehlxr/docker_practice
1
0
Fork 0
mirror of https://github.com/yeasy/docker_practice.git synced 2026-03-11 04:14:38 +00:00
Code Issues Projects Releases Wiki Activity
Files
8965f084ebae6a4199dc5145c71fe897f1e28820
docker_practice/17_security/summary.md
Baohua Yang 175aaae48a style(docs): standardize heading formats and numbering 
- Enforce Level 1-3 structural numbering based on SUMMARY.md hierarchy
- Remove structural numbering from Level 4+ headings
- Eliminate single child headings by converting to bold text
- Auto-inject summary text for headings with multiple children missing intro text
- Exclude Appendix chapters from structural numbering
- Avoid modifying code block contents
- Add script to detect non-standard English usage in headers
2026-02-21 22:40:33 -08:00

511 B
Raw Blame History

17.6 总结

Docker 的安全性依赖于多层隔离机制的协同工作,同时需要用户遵循最佳实践。

总体来看Docker 容器还是十分安全的,特别是在容器内不使用 root 权限来运行进程的话。

另外,用户可以使用现有工具,比如 ApparmorSeccompSELinuxGRSEC 来增强安全性;甚至自己在内核中实现更复杂的安全机制。