Navigation Menu

So, What Does a Container Engine Really Do Anyway?

By on Jul 13, 2018 in Article

It only takes a couple of quick google searches to realize that people have no idea what a container engine is. That’s understandable because It was a completely new concept back in 2013. Plenty of good people have tried and failed – see WTF is a Container¬†(not deep enough) or What is Docker and why is it so darn popular? (technical drawing completely...

Read More

What is sVirt and How Does it Isolate Linux Containers?

By on Jul 10, 2018 in Article

Background What is sVirt and, why does it matter for your containers? The short answer is, because sVirt is another layer of security and defense in depth is a good approach to security. The longer answer is, sVirt dynamically generates an SELinux label for every single one of your containers, which makes them less likely to be able to break into each other, break...

Read More

Securing Docker Containers with sVirt and Trusted Sources

By on May 21, 2015 in Article

Background As has been stated before, Docker containers do not contain all of the parts of the operating system necessary to be considered secure. That said, the advantages of using them is so compelling that many companies, large and small, have began to investigate how to run containers in a production environment. I would argue that it can be done, but careful...

Read More