Security News > 2020 > February > Misconfigured Docker Registries Expose Thousands of Repositories
Thousands of code repositories were found exposed in over one hundred Docker registries that are accessible from the Internet without authentication, Palo Alto Network reports.
Docker registries are servers where Docker images are stored and organized into repositories, with each repo containing images of one application and multiple versions of the application, each with a unique tag.
Docker registries include support for three primary operations: pushing, pulling, and deleting images.
Of 941 Docker registries found to be exposed to the Internet, 117 do not require authentication, Palo Alto Networks' security researchers say.
"A misconfigured Docker registry could leak confidential data, lead to a full-scale compromise, and interrupt the business operations. The remediation strategy for this particular misconfiguration is straightforward, such as adding a firewall rule to prevent the registry from being accessed from the internet and enforcing authentication header in all the API requests," Palo Alto concludes.