docker-bench-security: Audit Well-Known Docker Vulnerabilities

docker-bench-security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
We use Docker to save effort, not the other way around. Try docker-bench-security to avoid common pitfalls using Docker. It’s provided by Docker, Inc. Totally free and constantly polished.

Enclosed is all you need to know, in order to understand and use the tool.

docker-bench-security: audit all known container vulnerabilities


Continue reading

Ultimate Command Line To Share Files Across The Internet

Using a single command, we can easily upload any files from our computers or servers to a web server. Then our friends or colleagues can download them directly from web browsers. Isn’t that cool?

Worry about the security? We can encrypt files before transfer. Also we can claim the maxinum downloads of those files, or expire download link in several days.

Here we go! transfer.sh: easy and fast file sharing from the command-line. Zero Initial Setup and Super Easy to use.

Ultimate Command Line To Share Files Across The Internet


Continue reading

Get Latest DevOps Trend In 30 Minutes

DevOps involves tons of softwares, technologies and methodologies. You finally get familiar with Nagios, but more and more people are talking about Sensor now. When you start to try OpenStack, Docker seems to be compelling. Sound familiar? It’s really hard to be on top of it!

Here are some practical tips to follow the latest DevOps trend with minimum time.

Recommend DevOps Websites And Blogs


Continue reading

Free And Temporary VPN For China

If you are in China or temporarily visit China, it’s hard to open Google, Gmail, Slideshare, Twitter, etc. Internet Censorship is fine. But… I strongly suggest there should be one exception. We, as developers, should be able to access. It’s a must to do a better job.
Here I provide a free VPN service. The password will be rotated periodically. Unfortunately I can’t afford to make a bigger commitment. It should be good for temporary use. Right? Good news is you will have a Docker image to easily run the service in your own server. Check it now!

Free And Temporary VPN For China


Continue reading

5 Common Failures Of Package Installation

For DevOps, installation is one of our major tasks. People may wonder package installation is pretty straight-forward and easy now. Just run commands like apt-get, yum, brew, etc. Or simply leave it to containers.

Is it really that easy? Here is a list of headache and hidden costs. Discuss with us, DevOps gurus!

Case Study For Failures Of Package Installation


Continue reading

Manage SSH Key File With Passphrase

Any serious DevOps will only ssh by key file. Not with password, right? And mostly our powerful key file can unlock many critical envs. Have you ever uploaded your private key to other envs, like jumpbox? What if your key is magically stolen by hackers somehow?
Time to protect your sensitive ssh key by passphrase. And live with it, headache-free.

Manage SSH Key File With Passphrase


Continue reading