Bird
0
0

Which strategy best reduces the attack surface of a containerized application?

hard📝 Application Q9 of 15
Docker - Security
Which strategy best reduces the attack surface of a containerized application?
ARun containers with root privileges for easier management
BInstall all software packages to ensure functionality
CUse minimal base images and run containers with non-root users
DExpose all container ports to the host network
Step-by-Step Solution
Solution:

  1. Step 1: Define attack surface reduction

    Reducing unnecessary software and privileges limits potential vulnerabilities.

  2. Step 2: Analyze options

    Minimal images and non-root users reduce risks; installing all packages or exposing ports increases attack surface.

  3. Final Answer:

    Use minimal base images and run containers with non-root users -> Option C

  4. Quick Check:

    Attack surface reduction = Minimal images + non-root users [OK]
Quick Trick: Minimal images + non-root users = safer containers [OK]
Common Mistakes:
  • Installing unnecessary packages
  • Running containers as root
  • Exposing all ports unnecessarily

Want More Practice?

15+ quiz questions · All difficulty levels · Free

Free Signup - Practice All Questions
More Docker Quizzes
Docker Security - Capabilities and privilege control - Quiz 9hard Docker Security - Capabilities and privilege control - Quiz 7medium Docker Swarm - Why orchestration matters - Quiz 2easy Docker Swarm - Deploying services in Swarm - Quiz 12easy Docker in CI/CD - GitLab CI with Docker - Quiz 13medium Logging and Monitoring - Centralized logging setup - Quiz 5medium Logging and Monitoring - Alert setup for container health - Quiz 14medium Logging and Monitoring - Why monitoring containers matters - Quiz 11easy Production Patterns - Init container pattern - Quiz 5medium Production Patterns - Init container pattern - Quiz 3easy