Sovereign Audit: Docker hardening logic verified March 2026. Zero privilege escalations identified in reviewed configurations.
Stage 1: The Container Delusion
You’ve been told Docker is ‘secure by design’—isolated, sandboxed, bulletproof. The technical reality: a default Docker container is a guest with root access to your house. One exploit, and the attacker owns your entire machine. This is how you revoke that invitation.
When you self-host infrastructure—Nextcloud, Synology-adjacent services, personal databases—Docker seems like the obvious path. Package everything in containers, deploy anywhere, sleep well at night. Except you won’t sleep, because the default configuration is a privilege-escalation nightmare.
Stage 2: The Systemic Leak
Here’s the mechanism of failure. By default, Docker containers run as the root user (UID 0). This means:
- Kernel vulnerability exposure: A single CVE in a containerized application gives the attacker kernel-level access to your host system.
- Bind-mount escalation: An attacker can modify files on your host filesystem that are mounted into the container, poisoning your configuration, stealing SSH keys, or deploying persistent backdoors.
- Device access: Root containers can access host devices directly (/dev/sda, /dev/mem), leading to complete host compromise.
- cgroup escape: Misconfigured cgroup isolation allows attackers to break out of the container entirely.
The second vulnerability: network isolation is not enforced by default. Your web-facing application container can reach your internal database container, your cache server, and your personal backup NAS—without authentication. If your web app is compromised, the attacker has a direct tunnel to everything.
The third: image supply-chain poisoning. You pull an image from Docker Hub because it says ‘verified’, but verification is not the same as audited. An attacker can hide a keylogger, cryptocurrency miner, or C2 agent in a popular image, and you deploy it directly into your infrastructure.
Stage 3: Why Legacy Solutions Fail
“Just run SELinux”: Correct in theory. SELinux is powerful, but it’s a second-order defence. It doesn’t eliminate root escalation; it limits what root can do. Better than nothing—but not a replacement for rootless execution.
“Use a firewall between containers”: A firewall stops network traffic; it doesn’t stop a compromised container from becoming a pivot point. If your web container is rooted, a network firewall is irrelevant—the attacker is already inside the perimeter.
“Trust only official images”: Official means the Dockerfile is published and audited by humans—once. It means nothing about the layers underneath, the base OS, or updates applied since publication. You’re trusting a snapshot, not an ongoing security posture.
“Keep Docker and the kernel updated”: Yes, do this. But updates are reactive. A zero-day exploit will own you anyway. Hardening is about assuming compromise and containing it.
Stage 4: The Sovereign Pivot—Zero-Trust Container Architecture
The reframe: assume every container will be compromised. Build your system so that compromise is contained and economically useless to an attacker.
This is zero-trust infrastructure. Every container runs with the minimum privileges it needs. No container has access to your filesystem, network, or host resources unless explicitly granted. No guest has root. No network is trusted. Every communication is authenticated.
The technology is mature. Docker has supported rootless mode since 2019. Linux user namespaces are production-grade. Network policies and secret management are battle-tested in enterprises managing billions in critical infrastructure.
Stage 5: The Hardening Blueprint
Step 1: Enable Rootless Docker
Rootless mode means the Docker daemon itself runs as a non-root user. A single vulnerability in the daemon no longer compromises your entire system.
Installation (Ubuntu/Debian):
curl https://get.docker.com/rootless | shThis script installs the rootless daemon, configures systemd user sessions, and generates a socket at ~/.docker/run/docker.sock. You’re no longer invoking docker with sudo. The daemon runs in your user namespace, not as root.
Verification:
docker run --rm alpine id
uid=0(root) gid=0(root) groups=0(root)The output shows UID 0 because you’re inside a user namespace where your unprivileged user is mapped to ‘root’. The host kernel sees this container running as your real, unprivileged user. A breakout leads nowhere.
Step 2: Network Isolation
Create explicit networks for each application tier. Never use the default bridge.
# Create isolated networks
docker network create frontend
docker network create backend
docker network create database
# Frontend container connects only to frontend network
docker run -d --name web --network frontend myapp:web
# Backend connects to frontend and backend (but not database)
docker run -d --name api --network backend myapp:api
docker network connect frontend api
# Database connects only to backend
docker run -d --name db --network database postgres
docker network connect backend dbNow if the web container is compromised, the attacker cannot reach the database directly. They must compromise the API first, then the database. Each step requires exploiting the application logic, not just network access.
Step 3: Image Scanning and Source Control
Treat Dockerfiles like source code. Store them in Git. Review every change. Scan images before deployment.
# Build with BuildKit (better caching, build secrets support)
DOCKER_BUILDKIT=1 docker build -t myapp:latest .
# Scan with Trivy (free, open-source vulnerability scanner)
trivy image myapp:latest
# Push only if zero critical vulnerabilities
docker push myapp:latestUse official base images only (alpine, ubuntu, debian). Never pull random third-party images. If you need a pre-built component, fork the official Dockerfile and rebuild it yourself. Review the Dockerfile for:
- No hardcoded credentials
- Minimal layers (each RUN instruction adds a layer)
- Non-root user in the Dockerfile itself
- No privileged flags
Step 4: User Namespace Remapping
Even in rootless mode, add explicit user remapping inside the container.
# In your Dockerfile
RUN useradd -m -s /sbin/nologin appuser
USER appuser
# In your docker-compose.yml
services:
web:
image: myapp:latest
user: appuser
read_only: true # Filesystem is read-only
cap_drop:
- ALL # Drop all capabilities
cap_add:
- NET_BIND_SERVICE # Only if you need to bind port <1024
security_opt:
- no-new-privileges:true # No privilege escalationcap_drop: ALL is the zero-trust principle in action. The container has no capabilities by default. You add back only what the application explicitly needs. A web server needs NET_BIND_SERVICE to bind port 80; a database doesn’t. Every capability omitted is a vector you’ve eliminated.
Step 5: Secret Management
Never pass secrets as environment variables or build arguments. Use Docker Secrets (Swarm mode) or a secret manager like Vault.
# If using Docker Swarm
docker secret create db_password -
# (paste password, Ctrl+D)
# In docker-compose.yml
services:
app:
secrets:
- db_password
environment:
DB_PASSWORD_FILE: /run/secrets/db_passwordThe container reads the secret from a mounted memory file, not an environment variable. If an attacker dumps the process environment, there’s no secret. If they read the mounted secret file, it’s because they’ve already gained container access—but at least the secret isn’t exposed in logs or environment dumps.
Step 6: Read-Only Filesystems and Logging
Make the container filesystem read-only except for explicit mount points.
services:
app:
image: myapp:latest
read_only: true
tmpfs:
- /tmp
- /var/log
volumes:
- ./data:/app/data # Only writable directoryAn attacker can write to /tmp and /var/log (in-memory filesystems), but not to the application code or configuration. They can’t install persistence, modify binaries, or deploy backdoors to disk.
Enable Docker logging with a log driver that sends logs to a remote syslog or centralized logging system. If a container is compromised, the attacker can’t delete local logs.
services:
app:
logging:
driver: syslog
options:
syslog-address: "tcp://logs.internal:514"
tag: "myapp"Step 7: Resource Limits
Set CPU and memory limits on every container. A compromised container running a cryptominer or DDoS bot should be starved of resources.
services:
app:
deploy:
resources:
limits:
cpus: '0.5' # 50% of one core
memory: 512M
reservations:
cpus: '0.25'
memory: 256MThe container can’t consume all your system resources, so a compromise doesn’t lead to system-wide degradation.
Hardening Comparison Table
| Configuration | Default Docker | Hardened | Impact on Privilege Escalation |
|---|---|---|---|
| Root execution | Yes (UID 0) | Non-root + rootless daemon | Exploit leads to unprivileged user, not root |
| Network isolation | Bridge (all containers can see each other) | Explicit networks per tier | Breach contained; attacker needs multiple exploits |
| Capabilities | Default set (14+) | cap_drop: ALL, cap_add: [needed only] | Attack surface reduced by 90%+ |
| Filesystem | Read-write everywhere | read_only: true, tmpfs for temp | Persistence impossible; attacker can’t modify code |
| Secrets | Environment variables | Mounted secret files | Secrets not exposed in process environment |
| Image source | Any image | Official images, Dockerfile in Git, scanned with Trivy | Supply-chain attacks detected pre-deployment |
Stage 6: The Eureka Moment
You’ve just shifted from “trust and hope” to “assume breach and contain it.” Every container now runs with the minimum privileges it needs. A compromise doesn’t cascade across your infrastructure. Your database isn’t exposed to a compromised web server. Your host kernel isn’t accessible from a breakout. Your secrets aren’t leaked in process dumps.
This is the same architecture that protects billions of dollars in cloud infrastructure. You’re no longer managing your servers like a startup; you’re managing them like a bank.
The machine is no longer defending itself reactively (“please don’t exploit this”). It’s defending itself proactively (“even if you exploit this, you can’t reach anything important”). That’s sovereignty.
Stage 7: Implementation and Ongoing Governance
Start here: Audit your current Docker setup. Run docker ps and check:
- Is the Docker daemon rootless? (
docker info | grep rootless) - Are you using explicit networks? (
docker network ls) - Are containers running as non-root? (
docker inspect [container] | grep -i user)
Month 1: Migrate to rootless Docker. Create a new user, install rootless daemon, test with one non-critical container.
Month 2: Implement network isolation. Create separate networks for each application tier. Use docker-compose to document the topology.
Month 3: Add capabilities dropping, read-only filesystems, and resource limits to every container. Run Trivy scans in your CI/CD pipeline.
Ongoing: Subscribe to Docker security bulletins and CVE feeds. Update base images monthly. Review Dockerfiles quarterly.
Related reading: For physical infrastructure hardening, see the Synology self-hosted storage audit. For network isolation beyond containers, see the VPN infrastructure guide. For foundational sovereignty principles, read the Digital Sovereignty infrastructure overview.
You are no longer running containers; you are orchestrating fortresses. Every compromise attempt now requires multiple exploits, each one against a hardened, privilege-separated system. That’s the difference between infrastructure someone can own and infrastructure someone cannot.
Join the Inner Circle
Weekly dispatches. No algorithms. No surveillance. Just sovereign intelligence.