In utilizing several docker containers, there are some containers such as Netdata
that do not offer default protection. Closing an application's port and utilizing Traefik
is a proactive security step against malicious actors, but we know that it is not enough. If we were to visit Netdata
.yourdomain.com, it would serve as an entry point for us to conduct malicious activities against your server.
So what does Shield do for you? It provides an additional layer of protection by providing Google Authentication on top of your containers against authorized users. Unlike PG’s Legacy AppGuard, you will be able to sign in one and your applications are are protected.
Shield utilizes Google's OAuthentication in conjunction with Traefik
, Thomseddon's Authentication Project
, and PG’s constructive interface that enables a user to deploy a proactive defense for their applications.