Welcome the new year with a Meetup on Docker security. The Meetup will be split in two parts:
Part One: How are containers built in the Kernel level
We'll talk about namespaces, cgroups and the other goodies that the Kernel provides, so that processes living in containers can be isolated and respect resource limits.
Part Two: Utilizing the Docker API and namespaces to secure our infrastructure
In the next part, we'll talk about how we can leverage the Docker API and the Kernel resources we've talked about in order to enforce our limits and secure our infrastructure. We'll use iptables, Docker events API, stats APIs and more.