Creating, Managing, and Securing Docker Volumes: Best Practices

2024-10-212024-09-23 ~ Tom's IT Cafe ~ Leave a comment

Docker volumes are essential for persisting data generated by and used by Docker containers. They provide a way to store data outside the container’s lifecycle, ensuring data durability and accessibility. This article will guide you through creating, managing, and securing Docker volumes, highlighting the most secure practices and how to configure persistent storage effectively.

Continue reading →

Running Secure, Rootless Docker Containers on a Docker Host

2024-10-142024-09-23 ~ Tom's IT Cafe ~ Leave a comment

Running Docker containers as a non-root user, also known as rootless mode, is a significant step towards enhancing the security of your containerized applications. This approach mitigates potential vulnerabilities by ensuring that neither the Docker daemon nor the containers have root privileges. This article will guide you through the process of setting up and securing rootless Docker containers on a Docker host.

Continue reading →

Understanding Docker Engine and Docker Desktop: Key Differences and Benefits

2024-09-302024-09-23 ~ Tom's IT Cafe ~ Leave a comment

Docker has revolutionized the way we build, share, and run applications by enabling containerization. Two essential components in the Docker ecosystem are Docker Engine and Docker Desktop. This article aims to clarify their differences, functionalities, and how they can benefit developers, system administrators, and other IT professionals.

Continue reading →

Podman vs Docker: Architectural and Security Differences

2024-09-232024-09-23 ~ Tom's IT Cafe ~ Leave a comment

In the realm of containerization, Docker has long been the dominant player, but Podman has emerged as a strong alternative, particularly for those prioritizing security and flexibility. This article delves into the architectural and security differences between these two containerization tools.

Continue reading →

Docker Basics: Upcoming Free Training by Tom’s IT Cafe

2024-07-022024-07-02 ~ Tom's IT Cafe ~ Leave a comment

Tom’s IT Cafe’s upcoming free training is under heavy development: Docker Basics for beginner system administrators, developers and those who want to learn containerization with the industry standard Docker solution. Enhance your CI/CD, automation and system testing with containers.

Stay tuned! You will learn how to install and use Docker in a Linux environment.

Deploying Mailcow: A Self-Hosted Mail Server In Docker

2024-01-162024-01-12 ~ Tom's IT Cafe ~ Leave a comment

Setting up an efficient mail server is crucial for individuals and organizations. Mailcow, a comprehensive mail server solution, offers a user-friendly interface and a wide range of features. In this guide, I’ll walk you through the process of installing Mailcow on Debian Bookworm and Docker, ensuring a smooth and hassle-free experience.

Continue reading →

Install Passbolt Self-Hosted With Podman

2023-12-222023-12-19 ~ Tom's IT Cafe ~ Leave a comment

Passbolt is an open-source password manager designed for teams and organizations that prioritize security and privacy. It offers the following features:

Security-First Approach: Passbolt puts security first, with a security model that supports user-owned secret keys and end-to-end encryption, regularly assessed by top penetration testers.
Built for Collaboration: It allows secure sharing of credentials with powerful auditing tools and unparalleled granularity for access controls and encrypted data.
Privacy Focus: Headquartered in the EU, Passbolt prioritizes privacy and is designed to comply with European privacy laws.
Versatility and Control: Passbolt is designed to put users in control of their data and protect them from a wide range of potential threats, making it suitable for security-conscious organizations.

Passbolt is trusted by a wide range of organizations, including Fortune 500 companies, the defense industry, universities, and startups, and has received 4,000 stars on GitHub as a seal of approval for its reliable and secure password management. It is also available as a free and open-source solution, with an extensible API for developers.

Continue reading →