Part 3: System Hardening
Harden the host operating system using AppArmor, Seccomp, kernel security modules, and network-level protections.
Modules
Section titled “Modules”| Module | Description |
|---|---|
| Module 3.1: AppArmor for Containers | Mandatory access control profiles for containers |
| Module 3.2: Seccomp Profiles | Restricting system calls available to containers |
| Module 3.3: Linux Kernel and OS Hardening | Kernel parameters, sysctl, and OS-level security |
| Module 3.4: Host Network Security | Securing host networking and reducing attack surface |