Docker Security

Are Docker images and containers secure?

This was one of my first questions when I started using Docker. I saw commands that pulled images of OSes and containers of install software and saw output of even more software running as it installed and ran various images and containers on my box–no prompts . . . just installing and installing. It was then that I asked myself, “How do I know if anyone has put any malicious code in here or not? Yikes!”

The answer is, “I don’t!”

We place a tremendous amount of trust in these hubs and other hubs like NuGet and NPM. When working with enterprise applications, we have to be careful we aren’t inadvertently giving someone the keys to the kingdom.

So, I did some Googling and found this article which takes you through a few things that can help you in quickly checking out Dockerfiles and understand what they are doing and what to watch out for. These steps surely won’t give you absolute certainty. For that, you’d have to inspect ALL the code. Most of us don’t have the time for that. But, the steps he lays out sure are better than just blindly running images and containers.

Be careful out there . . .

Rails New Command Throws SSL_connect error

I just downloaded a fresh install of Ruby on Rails for Windows and when do a rails new projectName, I get an SSL_connect error! How do fix this?

Here’s the specific error that you will get:

Gem::RemoteFetcher::FetchError: SSL_connect returned=1 errno=0 state=SSLv3 read server certificate B: certificate verify failed (
An error occurred while installing rake (10.4.2), and Bundler cannot continue.
Make sure that `gem install rake -v ‘10.4.2’` succeeds before bundling.

After doing a big of Googling, I found this site that had a working solution. You can read the details there or just get this file, and put it in the folder:


Or similar location, and try again.

Hot Reloading in React

Can I debug / write a React application in real-time without having to reload the application every time I make a code change and losing my development state?


Design Inspiration

Where’s a good place to get inspiration for mobile and web design components?

You can see and play with tons of ideas from around the world from everything having to do with graphics to controls to websites . . . and you can interact with the designers . . . and even hire them!

Pretty cool site!

Resetting Bluetooth on a Mac

I just turned on my Mac and now my bluetooth keyboard and magic pad won’t sync.

Sometimes, when I bring my laptop back in after taking it home from work at night, my wireless keyboard and magic pad won’t sync. Instead of rebooting my computer, I just unload the bluetooth in a terminal session.

sudo kextunload -b

and then

sudo kextload -b

to load it back again.

?? Operator

If you use nullable types in C# (e.g., int?, double?, boolean?, etc.) you may be interested to know that C# has a special operator for handling what to do if a value is null. It is called the null-coalescing operator. It works like this . . .

int? x = null;
int y = x ?? -1;

If x is null, then the value on the right side of the ?? will be used; otherwise, it will use the value of x to assign to y in the example above.

So, you don’t need to do things like this anymore . . .

int y = (x == null) ? x : -1;

Neat huh?