3. How to use secrets the right way

How to use secrets the right way

But what makes that ok to ignore a best practice? Baking secrets into an image is bad for several reasons foremost in my mind is that you can mount the image and read the secret from anywhere it is loaded, including developer machines. And if that image ever leaks by any other means, you've got a secret out in the wild. Not to mention that it's now a shared secret which has a whole slew of other potential issues.

I would not run it this way in my shop, ever. Heck, I wouldn't run it this way at home, either. It's just reinforcing a bad habit and secret sprawl. Use the secret tooling that your orchestration provides, and if it doesn't, use environment variables and .env files that are not kept in version control.

/r/docker Thread Parent
Previous
Next

Recently removed from /r/docker

i am running same laravel 9 application on 2 differnet docker containers, applicaton has two routes when i acccess http://localhost/container1 and http://localhost/container2, what i want is to route to different container when i use /container1 and /container2, i am using traefik reverse proxy env_file directive not working Debugging code without rebuilding image Giving container its own ip address with docker-compose? Isolating Docker images behind Nginx-proxy State of Docker for Mac given Apple's upcoming transition away from Intel CPUs? How I delete things docker has installed? A beginner in Docker. How can I be sure that everything goes through the vpn connection and is secure?

More Random Comments

Trying to get =3-SUM(C9:E9) with VBA with the formula in text, get an error message instead. BASED MADMAN JAMES WOODS DELIVERING TRUTH! Dota 7.06 Totalbiscuit's thoughts on The Surge Altruist Camp - Dead End Connections let's discuss this with A Restricted Vocabulary Anyone else who've only had miscarriages and no children feel sad on mothers day? Those who quit their job due to their employers asking them to do something which you considered to be morally wrong, whats your story? Transparency in YouTube Monetization Tell me about your mother. Overview for ayoubst If you could go back and relive the most traumatic event in your life, how would you handle it differently this time? Card Sleeves,Dragon Shield and Eclipse let's discuss this with A Restricted Vocabulary [Serious] Redditors who lost everything in some kind of natural disaster/freak accident, what's your story? How did you cope?