Secure Docker using USER and Volume


Docker user has root privilege on host. The default user in container is root. In order to secure docker, we can create a user in docker container and run as non privilege user. The problem is that some services in docker need to write data to disk. E.g. druple has a files folder to store user uploaded files.

Read More

Docker restart policies.


  • no - this is defualt value
  • no-failure - restart container if it returns an error exit code. It also supports maximum numbers of times Docker will try.
  • unless-stopped - only restart container if it is running after reboot or restart docker service
  • always - Always keep the container running
Read More