看到了这篇老外的博客:Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities于是,结合最近爆出的redis未授权访问导致可远程获得服务器权限漏洞,在docker容器中验证官方pull的镜像是否存在漏洞. 我的docker安装在centos7的虚拟机中,版本1.9,redis镜像从官方pull ubuntu/redis,首先启动redis容器: Kali虚拟机中登录存在漏洞的r
1.拉取最新的redis镜像 docker pull redis; 2.创建存放redis数据的目录 mkdir /redis/data 3.查询redis镜像id docker images; REPOSITORY TAG IMAGE ID CREATED SIZE redis latest 3c41ce05add9 13 days ago 95MB 4.查看当前正在运行的容器 docker ps; CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS
拉取镜像 docker pull redis:4.0 在主机/data/redis/conf目录下新建redis.conf文件vim /data/redis/conf/redis.conf # Redis configuration file example. # # Note that in order to read the configuration file, Redis must be # started with the file path as first argument: #