https://nidomiro.de/tags/docker/Recent content in Docker on nidomiroHugoenFri, 14 Mar 2025 10:43:41 +0100https://nidomiro.de/article/more-secure-dind-in-gitlab-ci/Thu, 31 Dec 2020 12:00:00 +0000https://nidomiro.de/article/more-secure-dind-in-gitlab-ci/<p>If you are reading this article you probably already know how to use DinD (DockerInDocker) in GitLab CI. The default way is to set <code>privileged=true</code> in your Runner-config.</p> <p>This little flag makes everything work; but at the cost of security. There are many articles regarding this topic, eg. <a href="https://www.trendmicro.com/en_us/research/19/l/why-running-a-privileged-container-in-docker-is-a-bad-idea.html">this one</a>. The baseline is, if you run a container privileged, and the container uses the root-user inside, you can lose the whole server.</p>https://nidomiro.de/article/server-config-from-git/Wed, 15 Jul 2020 12:00:00 +0000https://nidomiro.de/article/server-config-from-git/<h1 id="intro">Intro</h1> <p>During my work as a programmer I often encountered that configuration and infrastructure files only lived on the servers they belog to. If they had a copy in git, the states would always divert over time. One reason for this diverting is that you actively have to put the changed files in git, after you finished your work. It’s simply a thing you can forget.</p> <p>What do I mean by &ldquo;infrastructure files&rdquo;? For me infrastructure files are files, that you need to configure the server itself, e.g. nginx-config, docker-compose.yml, &hellip; .</p>