Automation, DevOps and Containerization
© 2001-2023. All rights reserved.
Docker Engine API can be published on TCP port
Unfortunately, very easy to publish insecurely
Certificate based server and client authentication is painful
Insecure dockerd enables breakout
dockerd
Do not open TCP directly
Use containerized reverse proxy