Name		Name	Last commit message	Last commit date
parent directory ..
multi-stage		multi-stage
README.md		README.md

README.md

Best Practices and Tips Exercises

This section does not include any exercises, but several examples you may use as references to build better containers and improve your experience while working with them.

Multi-stage build

multi-stage build

Read-only Container

Use tmpfs mounts

Read Only Example

docker run -d -p 80:80 --read-only \
--tmpfs /run:rw,noexec,nosuid,size=1m \
--tmpfs /var/cache/nginx:rw,noexec,nosuid,size=5m \
nginx:stable-alpine

Capabilities

List of Linux Capabilities Article on Container Capabilities

Command	Description
`docker run --cap-add <capabilitity>`	Adds a capability to a container context.
`docker run --cap-drop <capabilitity>`	Drops a capability from a container context.

Cleaning up

Command	Description
`docker container prune < --force >`	Remove all stopped containers. Optional: --force removes ALL containers.
`docker images prune < --force >`	Removes all unused images. Optional: --force removes ALL images.
`docker system prune < --force >`	Removes all unused data. Optional: --force removes EVERYTHING.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

best-practices-and-tips

best-practices-and-tips

README.md

Best Practices and Tips Exercises

Multi-stage build

Read-only Container

Capabilities

Cleaning up

Files

best-practices-and-tips

Directory actions

More options

Directory actions

More options

Latest commit

History

best-practices-and-tips

Folders and files

parent directory

README.md

Best Practices and Tips Exercises

Multi-stage build

Read-only Container

Capabilities

Cleaning up