| From: | Kashif Zeeshan <kashi(dot)zeeshan(at)gmail(dot)com> |
|---|---|
| To: | "Nguyen, Long (IM&T, St(dot) Lucia)" <Long(dot)Nguyen(at)csiro(dot)au> |
| Cc: | "pgsql-admin(at)lists(dot)postgresql(dot)org" <pgsql-admin(at)lists(dot)postgresql(dot)org> |
| Subject: | Re: postgresql in docker to improve security |
| Date: | 2024-05-03 03:23:01 |
| Message-ID: | CAAPsdhdORCqnqGeMDyWQFE3PcF54kOB6-20U7mQCZ4nheCFUhQ@mail.gmail.com |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-admin |
Hi
Yes docker container improves the security and following are the ways it
does.
1. Isolation : When you run postgres in a container, you are isolating it
from host os and other containers so it limits the attack surface.
2. Port mapping : By mapping only the necessary container port and allowing
access only using that port limits the attack surface.
3. You can manage the access privileges of the users that run container
4. Docker containers use namespaces for process isolation and security.
Regards
Kashif Zeeshan
Bitnine Global
On Fri, May 3, 2024 at 3:44 AM Nguyen, Long (IM&T, St. Lucia) <
Long(dot)Nguyen(at)csiro(dot)au> wrote:
> Good day. This is a general db question.
>
>
>
> I start exploring containerisation and start learning docker. Would
> having postgresql in docker improve security in the sense that users could
> only access to the db through the port mapped to the environment outside of
> docker, and if they somehow are able to hack and access outside the db, the
> access is limited within the container not the OS that host the container.
>
>
>
> Thanks.
>
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Ron Johnson | 2024-05-03 03:24:55 | Re: HA Setup Review |
| Previous Message | Deepak Pahuja . | 2024-05-03 03:02:17 | Re: HA Setup Review |