{"guid":"7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","title":"Unboxing and building container images","subtitle":"What is an image technically and how to assemble them manually","slug":"froscon2018-2155-unboxing_and_building_container_images","link":"https://programm.froscon.de/2018/events/2155.html","description":"Everyone wants to use containers today yet most don't really know how they function and what is in the box. Also building containers in unprivileged contexts can be challenging. \nIn this talk we will look into a docker image and discuss how to create those packages using tools like kaniko\n\nFor most people that want to create a docker image the journey ends with docker build. What this will trigger is building a docker image using the running docker engine on your host. \nThe problems start at a point where you don't have access to the docker daemon, want to build a container in a container (as most CI systems execute in containers nowadays) or just have limited permissions on the system. \n\nFor this we will open the mystical box of a docker image by looking into:\n- Layers\n- Empty Layers\n- Configuration Details\n\nThen we will look into the kaniko project that tries to build those images without ever touching a docker daemon to better understand how those images can be created and how to work in more restricted environments. \n\nThose information can also be very helpful when looking into container security and scanning what is in the box. ","original_language":"eng","persons":["Christian Jantz"],"tags":["froscon2018","2155","Cloud"],"view_count":115,"promoted":false,"date":"2018-08-26T00:00:00.000+02:00","release_date":"2018-08-26T02:00:00.000+02:00","updated_at":"2025-07-25T23:00:07.662+02:00","length":2425,"duration":2425,"thumb_url":"https://static.media.ccc.de/media/events/froscon/2018/2155-hd.jpg","poster_url":"https://static.media.ccc.de/media/events/froscon/2018/2155-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/froscon/2018/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74-timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/froscon/2018/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74-thumbnails.vtt","frontend_link":"https://media.ccc.de/v/froscon2018-2155-unboxing_and_building_container_images","url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_title":"FrOSCon 2018","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018","related":[{"event_id":5734,"event_guid":"adde2800-ffa1-44c4-aafd-c4928ee5378d","weight":4},{"event_id":5736,"event_guid":"73bbeee4-7791-42d2-b3bd-317ca12a8895","weight":2},{"event_id":5737,"event_guid":"6c23d096-973d-40f5-bf72-3c9c7f2cd58a","weight":2},{"event_id":5738,"event_guid":"fafacf91-9842-4a5f-bb02-146250450001","weight":3},{"event_id":5740,"event_guid":"325decd8-4e17-42d1-aab7-446e7651a617","weight":2},{"event_id":5742,"event_guid":"7bd7470f-6197-4356-abb3-73d123f49c87","weight":2},{"event_id":5746,"event_guid":"ad920111-8443-4cde-9184-c94aa42a41db","weight":4},{"event_id":5751,"event_guid":"2b7d1c38-d3e0-4978-ac30-95aed9e7b0d7","weight":4},{"event_id":5753,"event_guid":"0f675194-51f2-4165-9c6c-9b5653bc52e6","weight":1},{"event_id":5755,"event_guid":"8ab1c7ea-00ee-4f1a-8e5a-7b60ec80408f","weight":3},{"event_id":5758,"event_guid":"ef2ff203-e91d-4b8f-90ad-966fe74d5325","weight":2},{"event_id":5761,"event_guid":"eff9b1c1-1e6b-445f-b153-a0b4a4e58b67","weight":3},{"event_id":5762,"event_guid":"ae6e36cb-713c-4b73-99ac-f1b95f910e32","weight":3},{"event_id":5765,"event_guid":"cc58e79c-5a9f-43cf-80da-6dca94b402c4","weight":2},{"event_id":5766,"event_guid":"73f1dcb2-25ba-48ff-a02a-3abc33360f03","weight":1},{"event_id":5776,"event_guid":"fd9ddda5-892f-4f55-ad36-b47044986bb3","weight":3},{"event_id":5778,"event_guid":"c18d8138-d063-4f42-a5ba-d48c9e617714","weight":2},{"event_id":5784,"event_guid":"065821fd-67da-4565-a380-a6a9d403416e","weight":8},{"event_id":5789,"event_guid":"b4cb8731-0709-4c3e-967b-3766a15ea572","weight":1},{"event_id":5791,"event_guid":"9144aaee-4cb6-4497-89d9-acca7da85730","weight":1},{"event_id":5794,"event_guid":"1963b747-4067-4b34-9c45-debd2f020fef","weight":3},{"event_id":5797,"event_guid":"b72de5fc-3cd1-4a76-980c-ca48bac7184f","weight":1},{"event_id":5802,"event_guid":"281464f3-4783-4c82-8e55-709b6ccee776","weight":2},{"event_id":5810,"event_guid":"291fe17d-80ca-46a9-9978-c61509a4f9c9","weight":2},{"event_id":5816,"event_guid":"4a6584de-59fd-405e-be42-ce295cc516f2","weight":3},{"event_id":5828,"event_guid":"b36d437f-7643-422d-b429-316a83826304","weight":1}],"recordings":[{"size":253,"length":2425,"mime_type":"video/mp4","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2018-08-26T16:24:08.268+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/h264-hd/froscon2018-2155-eng-Unboxing_and_building_container_images_hd.mp4","url":"https://api.media.ccc.de/public/recordings/27448","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":104,"length":2425,"mime_type":"video/webm","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2018-08-26T16:51:34.881+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/webm-sd/froscon2018-2155-eng-Unboxing_and_building_container_images_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/27467","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":31,"length":2418,"mime_type":"audio/opus","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2018-08-26T16:52:37.861+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/opus/froscon2018-2155-eng-Unboxing_and_building_container_images_opus.opus","url":"https://api.media.ccc.de/public/recordings/27469","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":74,"length":2425,"mime_type":"video/mp4","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2018-08-26T16:52:56.814+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/h264-sd/froscon2018-2155-eng-Unboxing_and_building_container_images_sd.mp4","url":"https://api.media.ccc.de/public/recordings/27470","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":36,"length":2418,"mime_type":"audio/mpeg","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2018-08-26T16:53:15.152+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/mp3/froscon2018-2155-eng-Unboxing_and_building_container_images_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/27471","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"},{"size":328,"length":2425,"mime_type":"video/webm","language":"eng","filename":"froscon2018-2155-eng-Unboxing_and_building_container_images_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2018-08-26T16:59:52.872+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2018/webm-hd/froscon2018-2155-eng-Unboxing_and_building_container_images_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/27483","event_url":"https://api.media.ccc.de/public/events/7d5ff8e1-f69b-493a-a5b5-e464cf2e5b74","conference_url":"https://api.media.ccc.de/public/conferences/froscon2018"}]}