Podman in Action: Secure, Rootless Containers for Kubernetes, Microservices, and More (Paperback)

The next generation of containers is here. Learn Podman directly from its creator, discover its exceptional security features, and start managing rootless containers that integrate easily into your systems.

In Podman in Action you will learn how to:

Build and run containers in rootless mode
Develop and manage pods
Use SystemD to oversee a container's lifecycle
Work with the Podman service via Python
Keep your containers confined using Podman security features
Manage containerized applications on edge devices

Podman in Action shows you how to deploy containerized applications on Linux, Windows, and MacOS systems using Podman. Written by Daniel Walsh, who leads the Red Hat Podman team, this book teaches you how to securely manage the entire application lifecycle without human intervention. You'll quickly get to grips with Podman's unique advantages over Docker, and learn how easy it is to migrate your Docker-based infrastructure. It also demonstrates how, with Podman, you can easily convert containerized applications into Kubernetes-based microservices.

Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications.

About the technology
It's time to upgrade your container engine! The Podman container manager delivers flexible image layer control, seamless Kubernetes compatibility, and rootless containers that can be created, run, and managed by users without admin rights. Plus, its OCI-compliant support for the Docker API lets you shift existing containers to Podman without breaking your scripts or changing the way you work.

About the book
Podman in Action introduces the Podman container manager. The easy-to-follow explanations and examples give you a clear view of what containers are, how they work, and how to manage them using Podman's powerful features. You'll get a deep look at the Linux components Podman uses and even learn more about Docker along the way. You'll especially appreciate author Dan Walsh's unique insights into container security.

What's inside

Develop and manage pods
Key security concepts including SELinux and SECCOMP
Use systemd to oversee a container's lifecycle
Keep your containers confined using Podman security
Manage containerized applications on edge devices
Install and run Podman on MacOS and Windows

About the reader
For developers or system administrators experienced with Linux and Docker.

About the author
Daniel Walsh is a senior distinguished engineer at Red Hat, and leads the team that created Podman.

Table of Contents

PART 1 FOUNDATIONS
1 Podman: A next-generation container engine
2 Command line
3 Volumes
4 Pods
PART 2 DESIGN
5 Customization and configuration files
6 Rootless containers
PART 3 ADVANCED TOPICS
7 Integration with systemd
8 Working with Kubernetes
9 Podman as a service
PART 4 CONTAINER SECURITY
10 Security container isolation
11 Additional security considerations

下一代容器已經來臨。從Podman的創作者直接學習，探索其卓越的安全功能，並開始管理輕鬆整合到您系統中的無根容器。

在《Podman in Action》中，您將學習如何：
- 在無根模式下建立和運行容器
- 開發和管理Pods
- 使用SystemD監控容器的生命週期
- 通過Python使用Podman服務
- 使用Podman安全功能保護您的容器
- 在邊緣設備上管理容器化應用程式

《Podman in Action》向您展示如何使用Podman在Linux、Windows和MacOS系統上部署容器化應用程式。本書由領導Red Hat Podman團隊的Daniel Walsh撰寫，教您如何在沒有人為干預的情況下安全地管理整個應用程式生命週期。您將迅速掌握Podman相對於Docker的獨特優勢，並學習如何輕鬆遷移基於Docker的基礎架構。它還演示了如何使用Podman將容器化應用程式輕鬆轉換為基於Kubernetes的微服務。

購買印刷版書籍可獲得Manning Publications提供的PDF、Kindle和ePub格式的免費電子書。

關於技術：
是時候升級您的容器引擎了！Podman容器管理器提供靈活的映像層控制、無縫的Kubernetes兼容性以及可以由用戶創建、運行和管理的無根容器，而無需管理員權限。此外，它對Docker API的OCI兼容支持使您可以將現有容器轉移到Podman而不會破壞腳本或改變您的工作方式。

關於本書：
《Podman in Action》介紹了Podman容器管理器。易於理解的解釋和示例讓您清楚地了解容器是什麼，它們如何工作以及如何使用Podman的強大功能來管理它們。您將深入研究Podman使用的Linux組件，並在此過程中更多地了解Docker。您將特別欣賞到作者Dan Walsh對容器安全的獨特見解。

讀者對象：
適合有Linux和Docker經驗的開發人員或系統管理員。

關於作者：
Daniel Walsh是紅帽公司的高級卓越工程師，領導了創建Podman的團隊。

目錄：
第1部分 基礎
1 Podman：下一代容器引擎
2 命令行
3 卷
4 Pods
第2部分 設計
5 自定義和配置文件
6 無根容器
第3部分 高級主題
7 與systemd集成
8 與Kubernetes合作
9 Podman作為服務
第4部分 容器安全
10 容器隔離安全
11 其他安全考慮事項

Daniel Walsh leads the team that created Podman, Buildah, Skopeo, CRI-O and friends. Dan is a senior distinguished engineer at Red Hat, which he joined in 2001, and he has worked in the computer security field for over 40 years. He is sometimes referred to as "Mr SELinux", after leading the development of SELinux at Red Hat prior to leading the container team.

Daniel Walsh帶領的團隊創建了Podman、Buildah、Skopeo、CRI-O等相關工具。Dan是紅帽公司的高級卓越工程師，於2001年加入該公司，並在計算機安全領域工作了40多年。他有時被稱為"SELinux先生"，因為在帶領容器團隊之前，他領導了紅帽公司的SELinux開發工作。