Which two actions help limit the attack surface of your Docker container? (Choose two.)
A . Run only a single service in each container.
B. Run all services in a single image.
C. Use version tags for base images and dependencies.
D. Use Kali Linux as a base image.
E. Download images over HTTPS supporting sites.
Answer: A,C
Explanation:
Running only a single service in each container and using version tags for base images and dependencies helps limit the attack surface of your Docker container. This ensures that only the necessary services are running and that you always have the latest versions of the base images and their dependencies, reducing the risk of malicious code being included in the container image.
Reference: Docker Documentation, Security Best Practices.
Latest 300-910 Dumps Valid Version with 59 Q&As
Latest And Valid Q&A | Instant Download | Once Fail, Full Refund