Docker - sgml/signature GitHub Wiki
# Status systemctl status docker.service # Stop ps axf | grep docker | grep -v grep | awk '{print "kill -9 " $1}' | sudo sh systemctl stop docker # Start systemctl start docker # The Bad Parts * https://dagster.io/blog/fast-deploys-with-pex-and-docker # Verify Certificate Chain openssl verify -CAfile RootCert.pem -untrusted Intermediate.pem UserCert.pem # Verify Self-Signed Certificate openssl verify -CAfile test.crt test.crt
Error guessing is a testing technique that leverages the tester’s experience, intuition, and knowledge of the system to predict where defects might occur. Here's a general methodology:
-
Leverage Experience: Testers use their past experience with similar applications or common error patterns to guess where errors might occur in the current application.
-
Understand the System: Testers need a good understanding of the system, its context, and its users. This knowledge can help them predict what might go wrong.
-
Identify Risky Areas: Certain parts of an application might be more prone to errors. These could be complex features, areas where new changes have been made, or parts of the application that have had issues in the past.
-
Design Test Cases: Based on their guesses, testers design and execute test cases specifically to expose potential errors.
-
Learn and Adapt: As testers find defects, they learn more about the system’s behavior and can refine their error guessing strategy.
- https://docs.docker.com/reference/cli/dockerd/
- https://docs.docker.com/engine/reference/commandline/dockerd/
- https://docs.docker.com/config/daemon/remote-access/
https://cheatsheetseries.owasp.org/cheatsheets/Docker_Security_Cheat_Sheet.html
- https://docs.docker.com/engine/network/
- https://www.docker.com/blog/how-docker-desktop-networking-works-under-the-hood/
- https://docs.docker.com/security/faqs/networking-and-vms/
- https://github.com/Hakky54/mutual-tls-ssl
- https://github.com/disyam/postgres-mtls
- https://github.com/containerd/containerd/discussions/5790
- https://docs.docker.com/engine/reference/commandline/cli/
- https://docs.docker.com/desktop/networking/#use-cases-and-workarounds
- https://venilnoronha.io/a-step-by-step-guide-to-mtls-in-go
- https://docs.docker.com/engine/install/troubleshoot/
- https://docs.docker.com/config/daemon/troubleshoot/
- https://docs.docker.com/storage/troubleshooting_volume_errors/
- https://docs.docker.com/compose/environment-variables/env-file/
- https://docs.docker.com/get-started/docker_cheatsheet.pdf
- https://www.freecodecamp.org/news/7-cases-when-not-to-use-docker/
- https://news.ycombinator.com/item?id=26934953
- https://www.reddit.com/r/docker/comments/tv7sqs/whats_the_point_of_containerizing_a_development/
- https://accesto.com/blog/when-to-use-and-when-not-to-use-docker/
- https://www.howtogeek.com/devops/when-not-to-use-docker-cases-where-containers-dont-help/
- https://www.codementor.io/blog/docker-technology-5x1kilcbow
- https://www.linkedin.com/pulse/container-internals-deep-dive-nived-velayudhan/
- https://www.linkedin.com/pulse/docker-tales-isolation-shipment-tldr-m%C3%A1rio-j%C3%BAnior/
- https://www.linkedin.com/pulse/docker-tales-isolation-shipment-tldr-m%C3%A1rio-j%C3%BAnior/
- Nginx: https://hub.docker.com/r/openbridge/nginx
- Drupal: https://hub.docker.com/_/drupal
- Wordpress: https://hub.docker.com/_/wordpress
docker exec -it postgres-localhost bash psql -U postgres CREATE DATABASE mytestdb;
docker volume create --name my_dag_log_volume --opt type=none --opt device=$PWD/airflow/logs --opt o=bind
volumes: - my_dag_log_volume:/usr/local/airflow/logs volumes: my_dag_log_volume:
https://docs.docker.com/glossary/
https://dockerbook.com/TheDockerBook_sample.pdf
https://docs.docker.com/compose/release-notes/
https://docs.docker.com/compose/gettingstarted/
https://vsupalov.com/docker-arg-env-variable-guide/
https://github.com/compose-spec/compose-spec/blob/main/spec.md
https://docs.docker.com/config/containers/live-restore/
https://docs.docker.com/compose/compose-file/
https://github.com/docker-library/postgres/issues/581
https://www.joyfulbikeshedding.com/blog/2019-08-27-debugging-docker-builds.html
https://medium.com/@betz.mark/ten-tips-for-debugging-docker-containers-cde4da841a1d
https://rasa.com/docs/rasa-x/installation-and-setup/docker-compose-manual/
https://duo.com/decipher/docker-bug-allows-root-access-to-host-file-system
https://docs.docker.com/compose/environment-variables/
https://code.visualstudio.com/docs/remote/containers-advanced
https://docs.docker.com/compose/reference/envvars/
https://docs.docker.com/engine/install/linux-postinstall/
https://dev.to/acro5piano/specifying-user-and-group-in-docker-i2e
https://stackoverflow.com/questions/40462189/docker-compose-set-user-and-group-on-mounted-volume
https://code.visualstudio.com/docs/containers/python-user-rights
https://medium.com/@nielssj/docker-volumes-and-file-system-permissions-772c1aee23ca
https://stackoverflow.com/questions/52754149/operation-of-the-mkdir-command-with-dockerfile/52754409
https://github.com/moby/moby/issues/20920
https://stackoverflow.com/questions/52737690/how-to-copy-a-directory-over-the-docker-cp
https://labouardy.com/preventing-race-conditions-in-docker/
https://github.com/moby/moby/issues/26768
https://github.com/moby/moby/issues/38064
https://www.digitalocean.com/community/tutorials/how-to-debug-and-fix-common-docker-issues
https://devtidbits.com/2019/11/02/customise-wordpress-on-docker/
https://davejansen.com/how-to-set-up-and-use-postgres-using-docker/
https://markheath.net/post/exploring-postgresql-with-docker
https://hackernoon.com/dont-install-postgres-docker-pull-postgres-bee20e200198
https://medium.com/@harshityadav95/postgresql-in-windows-subsystem-for-linux-wsl-6dc751ac1ff3
https://docs-stage.docker.com/engine/api/v1.24/
https://jackiechen.org/2015/04/20/understanding-docker-directory-structure/
https://docs.docker.com/compose/compose-file/compose-file-v2/
https://gist.github.com/eliashussary/379e44a99e2389bd6a8ea6a23c2d5af8
https://bobcares.com/blog/docker-change-container-configuration/
https://linuxhint.com/run_postgresql_docker_compose/
https://www.mankier.com/1/docker-inspect
https://wiki.debian.org/nftables
https://lwn.net/Articles/676831/
https://docs.docker.com/network/
https://docs.docker.com/v17.09/engine/userguide/networking/configure-dns/
https://www.godaddy.com/engineering/2018/05/02/kubernetes-introduction-for-developers/
- https://stackoverflow.com/questions/49950326/how-to-create-docker-volume-device-host-path
- https://github.com/docker/compose/issues/4675
- https://github.com/docker/compose/issues/3715
- https://github.com/docker/compose/issues/3270
- https://docs.docker.com/storage/bind-mounts/
- https://stackoverflow.com/questions/55366386/docker-compose-volume-type-bind-vs-volume
- https://github.com/moby/moby/issues/13121
- https://stackoverflow.com/questions/57630545/bind-mount-a-single-file-with-docker-compose
- https://github.com/moby/moby/issues/15793
- https://blog.morizyun.com/infra/docker-volume.html
- https://arothuis.nl/posts/one-off-docker-images/
- https://stackoverflow.com/questions/42248198/how-to-mount-a-single-file-in-a-volume
- https://stackoverflow.com/questions/23439126/how-to-mount-a-host-directory-in-a-docker-container
- https://stackoverflow.com/questions/49950326/how-to-create-docker-volume-device-host-path
- https://medium.com/@loomchild/backup-restore-docker-named-volumes-350397b8e362
- https://docs.oracle.com/cd/E37670_01/E75728/html/section_x54_32w_gp.html
- https://denibertovic.com/posts/handling-permissions-with-docker-volumes/
- https://maximorlov.com/docker-compose-syntax-volume-or-bind-mount/
- https://www.phase2technology.com/blog/bending-your
https://docs.docker.com/config/containers/live-restore/
https://docs.docker.com/config/daemon/systemd/
https://coreos.com/os/docs/latest/customizing-docker.html
http://www.softpanorama.org/Commercial_linuxes/Startup_and_shutdown/systemd.shtml
http://www.softpanorama.org/Commercial_linuxes/RHEL/index.shtml
https://docker-py.readthedocs.io/en/stable/volumes.html
https://docs.docker.com/storage/volumes/
https://docs.docker.com/config/daemon/
https://docs.docker.com/engine/security/https/
https://www.linkedin.com/pulse/use-apache-ssllets-encrypt-docker-leon-sczepansky/
https://docs.docker.com/engine/reference/commandline/dockerd/
http://dockerlabs.collabnix.com/beginners/components/daemon/
https://support.coreos.com/hc/en-us/articles/115002311127-Debugging-docker-daemon-Issues
https://github.com/docker/cli/issues/2104
- https://ma.ttias.be/how-to-compile-and-install-php-extensions-from-source/
- https://localwp.com/community/t/how-do-i-compile-additional-php-extensions/2272
- https://www.sitepoint.com/install-php-extensions-source/
One issue that occurs semi-regularly for LtU is that bot attacks - often just from overly aggressive crawlers - can cause the database container to run out of resources and crash. In that case, Kubernetes usually restarts the container and everything recovers automatically within a few minutes.
This process worked well for a few years, but at some point, it stopped working seamlessly. Even after manual attempts to recover, there would still be an intermittent but frequent symptom where it seemed like the app was still trying to reach the old crashed container, or something like that. I spent a bit of time looking at it, but soon decided it would be easier to switch to a new cluster than debug that years-old setup.
# Once you're in the container, you can install git. apt-get update apt-get install -y git # Configure your Git user (replace with your own name and email). git config --global user.name "Your Name" git config --global user.email "[email protected]" # Clone your repository (replace with your repository's URL). git clone https://github.com/username/repository.git # Navigate into your repository. cd repository # Make changes to your files here. # Stage and commit your changes. git add . git commit -m "Your commit message" # Push your changes (replace 'main' with your branch name if different). git push origin main
{ "DOCKER_CERT_PATH": "Path to the directory containing Docker TLS certificates (e.g., ca.pem, cert.pem, key.pem). Used for secure communication with the Docker daemon.", "DOCKER_HOST": "Specifies the address of the Docker daemon (e.g., tcp://localhost:2376). Determines where Docker CLI communicates with the Docker engine.", "DOCKER_TLS_VERIFY": "Set to '1' to enable TLS verification for secure communication with the Docker daemon. If unset or set to '0', TLS verification is disabled.", "DOCKER_API_VERSION": "Specifies the version of the Docker API to use. For compatibility, it's recommended to set this explicitly.", "DOCKER_BUILDKIT": "Enables BuildKit, an advanced build subsystem for Docker. Set to '1' to enable BuildKit features during image builds.", "DOCKER_REGISTRY": "Specifies the default registry to use for pulling images. Useful when working with private registries.", "DOCKER_USERNAME": "Username for authentication when pushing or pulling images from a registry.", "DOCKER_PASSWORD": "Password for authentication when pushing or pulling images from a registry.", "DOCKER_IMAGE_TAG": "Default tag to use when pulling or pushing images. If not specified, 'latest' is assumed.", "DOCKER_NETWORK": "Specifies the default network mode for containers (e.g., 'bridge', 'host', 'none').", "DOCKER_LOG_DRIVER": "Sets the default logging driver for containers (e.g., 'json-file', 'syslog', 'journald').", "DOCKER_STORAGE_DRIVER": "Specifies the storage driver for managing container filesystems (e.g., 'overlay2', 'aufs', 'zfs')." }
{ "options": { "-inform": "DER|PEM|NET", "-outform": "DER|PEM|NET", "-in": "filename", "-out": "filename", "-md2|-md5|-sha1|-mdc2": "digest to use", "-engine": "id", "-text": "prints out the certificate in text form", "-certopt": "customizes the output format used with -text" }, "descriptions": { "-inform": "Specifies the input format (DER, PEM, or NET)", "-outform": "Specifies the output format (DER, PEM, or NET)", "-in": "Input filename to read a certificate from", "-out": "Output filename to write to", "-md2|-md5|-sha1|-mdc2": "Digest options for signing or display", "-engine": "Specifies an engine by its unique id", "-text": "Displays full certificate details", "-certopt": "Customizes the output format used with -text" } }
+---------------------+ | | | Kubernetes API | | | +---------------------+ | v +---------------------+ | | | Kubelet (Windows) | | | +---------------------+ | v +---------------------+ | | | Containerd | | | +---------------------+ | v +---------------------+ | | | Windows Host OS | | | +---------------------+ | v +---------------------+ | | | Windows Containers| | | +---------------------+