Skip to content

ENGDOCS-2324 #21475

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 7 commits into from
Nov 28, 2024
Merged

ENGDOCS-2324 #21475

merged 7 commits into from
Nov 28, 2024

Conversation

@aevesdocker
Copy link
Contributor

@aevesdocker aevesdocker commented Nov 20, 2024
edited
Loading

Description

Light freshness for ECI content and removes references to DD versions that users can no longer download

Note There is a lot of 'allow' violations. Am deliberately choosing to ignore them this time.

Related issues or tickets

Reviews

  • Technical review
  • Editorial review
  • Product review

@netlify
Copy link

netlify bot commented Nov 20, 2024
edited
Loading

Deploy Preview for docsdocker ready!

Name Link
🔨 Latest commit 04fc4d4
🔍 Latest deploy log https://app.netlify.com/sites/docsdocker/deploys/67488834d233b70008fb796a
😎 Deploy Preview https://deploy-preview-21475--docsdocker.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify site configuration.

aevesdocker
aevesdocker commented Nov 20, 2024
View reviewed changes
content/manuals/security/for-admins/hardened-desktop/enhanced-container-isolation/_index.md
It uses a variety of advanced techniques to harden container isolation, but without impacting developer productivity. It is available with [Docker Desktop 4.13.0 and later](/manuals/desktop/release-notes.md).
It uses a variety of advanced techniques to harden container isolation, but without impacting developer productivity.

These techniques include:
Copy link
Contributor Author

@aevesdocker aevesdocker Nov 20, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Have remove this from the top because it is repeated in more detail down below

@aevesdocker aevesdocker marked this pull request as ready for review November 20, 2024 14:10
@aevesdocker aevesdocker requested a review from a team November 20, 2024 14:10
dvdksn
dvdksn reviewed Nov 25, 2024
View reviewed changes
@aevesdocker aevesdocker requested a review from dvdksn November 26, 2024 10:12
dvdksn
dvdksn reviewed Nov 28, 2024
View reviewed changes
...nuals/security/for-admins/hardened-desktop/enhanced-container-isolation/features-benefits.md Outdated
Privileged containers `docker run --privileged ...` are insecure because they
give the container full access to the Linux kernel. That is, the container runs
as true root with all capabilities enabled, seccomp and AppArmor restrictions
as true root with all capabilities enabled, Seccomp and AppArmor restrictions
Copy link
Contributor

@dvdksn dvdksn Nov 28, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
as true root with all capabilities enabled, Seccomp and AppArmor restrictions
as true root with all capabilities enabled, seccomp and AppArmor restrictions

@aevesdocker aevesdocker requested a review from dvdksn November 28, 2024 14:51
dvdksn
dvdksn reviewed Nov 28, 2024
View reviewed changes
_vale/config/vocabularies/Docker/accept.txt Outdated
Artifactory
Autotest
Azure
Berkely
Copy link
Contributor

@dvdksn dvdksn Nov 28, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually this is a typo, shouldn't be in the vocabulary. The correct spelling is Berkeley

aevesdocker
aevesdocker commented Nov 28, 2024
View reviewed changes
@aevesdocker aevesdocker requested a review from dvdksn November 28, 2024 15:11
@aevesdocker aevesdocker merged commit b26161d into docker:main Nov 28, 2024
13 of 14 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dvdksn dvdksn dvdksn approved these changes

Assignees

No one assigned

Labels

area/security area/tests status/review

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@aevesdocker @dvdksn