Closed victorquanlam closed 1 year ago
@victorquanlam Thanks soo much this is great! We just using API's and not storing any personal information so doesnt really need to be fort Knox :)
Happy to go with something reasonable that is not super hard to implement. But think that is something for another round of improvement. This what we got is fantastic for now if thats ok
It will probably take a bit of work for logs encryption. Some options for logs encryption are below. Let me know what you think.
Use a logging driver that supports encryption: Docker provides several logging drivers that support encryption, such as GELF, Fluentd, and Syslog.
Configure the logging driver to use encryption: Set the logging driver options to enable encryption. For example, when using the GELF logging driver, you can set the gelf-tls option to true to enable TLS encryption.
Store logs in a secure location: Store the encrypted logs in a secure location that is only accessible to authorized users. This can be a cloud storage service such as AWS S3 or a private server.
Rotate encryption keys regularly: Rotate the encryption keys used to encrypt the logs regularly to ensure that they remain secure.