Implementing the given commands in the Dockerfile ensures that the container runs with non-root user privileges. Running applications as a non-root user reduces the risk of privilege escalation attacks because even if anattacker compromises the application, they would have limited privileges and would not be able to perform actions that require root access.
A. Implementing the following commands in the Dockerfile: This directly addresses the privilege escalation attack surface by ensuring the application does not run with elevated privileges.
B. Installing an EDR on the container's host: While useful for detecting threats, this does not reduce the privilege escalation attack surface within the containerized application.
C.Designing a multi-container solution: While beneficial for modularity and remediation, it does not specifically address privilege escalation.
D. Running the container in an isolated network: This improves network security but does not directly reduce the privilege escalation attack surface.
[References:, CompTIA Security+ Study Guide, Docker documentation on security best practices, NIST SP 800-190, "Application Container Security Guide", , , , , ]
Submit