Docker Bench Security는 Docker 환경의 보안성을 평가하기 위해 개발된 오픈소스 도구입니다. 이 도구는 Docker 데몬 설정, 컨테이너 구성, 네트워크 설정 등 다양한 Docker 보안 요소에 대해 점검하며, 보안 취약점이나 잘못된 설정을 발견할 수 있도록 돕습니다. 이 도구는 특히 기업 환경에서 Docker 사용 시 보안 강화를 위해 유용합니다. 1. 주요 기능 Docker Bench Security는 CIS Docker … Read more
CREATE DATABASE IF NOT EXISTS wordpressdb;CREATE DATABASE IF NOT EXISTS ownclouddb;CREATE USER ‘wordpressuser’@’%’ IDENTIFIED BY ‘wordpress’;CREATE USER ‘ownclouduser’@’%’ IDENTIFIED BY ‘owncloud’;GRANT ALL PRIVILEGES ON wordpressdb.* TO ‘wordpress’@’%’;GRANT ALL PRIVILEGES ON ownclouddb.* TO ‘owncloud’@’%’;FLUSH PRIVILEGES; mysql-db: image: mysql:latest container_name: mysql-db restart: always environment: MYSQL_ROOT_PASSWORD: rootpassword volumes: – db_data:/var/lib/mysql – ./init.sql:/docker-entrypoint-initdb.d/init.sql ● 컨테이너 시작 후 수동으로 데이터베이스 … Read more
wordpress, owncloud 설치 및 SSL 인증서 적용을 위한 docker-compose.yml 파일작성(Let’s Encrypt를 사용하여 SSL 인증서 적용. 이를 위해 nginx-proxy와 docker-letsencrypt-nginx-proxy-companion을 사용.) services: nginx-proxy: image: jwilder/nginx-proxy container_name: nginx-proxy restart: always ports: – “80:80” – “443:443” volumes: – /var/run/docker.sock:/tmp/docker.sock:ro – ./nginx-certs:/etc/nginx/certs – ./nginx-vhost:/etc/nginx/vhost.d – ./nginx-html:/usr/share/nginx/html letsencrypt-nginx-proxy-companion: image: jrcs/letsencrypt-nginx-proxy-companion container_name: nginx-proxy-letsencrypt restart: always volumes: – /var/run/docker.sock:/var/run/docker.sock:ro – ./nginx-certs:/etc/nginx/certs – … Read more
『 출처 – https://doc.owncloud.com/server/next/admin_manual/installation/docker/ 』 1. 새로운 프로젝트 디렉토리를 생성합니다. mkdir owncloud-docker-servercd owncloud-docker-server 2. (docker-compose.yml) 파일을 생성합니다. version: “3”volumes: files: driver: local mysql: driver: local redis: driver: localservices: owncloud: image: owncloud/server:${OWNCLOUD_VERSION} container_name: owncloud_server restart: always ports: – ${HTTP_PORT}:8080 depends_on: – mariadb – redis environment: – OWNCLOUD_DOMAIN=${OWNCLOUD_DOMAIN} – OWNCLOUD_TRUSTED_DOMAINS=${OWNCLOUD_TRUSTED_DOMAINS} – OWNCLOUD_DB_TYPE=mysql – OWNCLOUD_DB_NAME=owncloud – OWNCLOUD_DB_USERNAME=owncloud – … Read more
출처 – https://github.com/docker/awesome-compose/tree/master/official-documentation-samples/wordpress/ services: db: # We use a mariadb image which supports both amd64 & arm64 architecture image: mariadb:10.6.4-focal # If you really want to use MySQL, uncomment the following line #image: mysql:8.0.27 command: ‘–default-authentication-plugin=mysql_native_password’ volumes: – db_data:/var/lib/mysql restart: always environment: – MYSQL_ROOT_PASSWORD=somewordpress – MYSQL_DATABASE=wordpress – MYSQL_USER=wordpress – MYSQL_PASSWORD=wordpress expose: – 3306 – 33060 … Read more
『 출처 – https://docs.docker.com/compose/install/linux/ 』 sudo apt-get updatesudo apt-get install docker-compose-plugin docker compose version
『 출처 – https://docs.docker.com/compose/install/linux/ 』 1. 이전 버전 제거. for pkg in docker.io docker-doc docker-compose docker-compose-v2 podman-docker containerd runc; do sudo apt-get remove $pkg; done 2. apt 리포지토리를 사용하여 설치. # Add Docker’s official GPG key:sudo apt-get updatesudo apt-get install ca-certificates curlsudo install -m 0755 -d /etc/apt/keyringssudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.ascsudo chmod a+r /etc/apt/keyrings/docker.asc# … Read more
