cleanstart/tomcat

Verified Publisher

By CleanStart

Updated about 20 hours ago

Secure by Design, Built for Speed, Hardened Container Images on a minimal base CleanStart OS.

Image
Web servers
0

10K+

cleanstart/tomcat repository overview

Container Documentation for Tomcat Documentation

The CleanStart Tomcat image provides a production-ready, security-hardened container optimized for enterprise environments. Built on a minimal base OS with comprehensive security hardening, this image delivers reliable application execution with advanced security features.

📌 Base Foundation: Security-hardened, minimal base OS designed for enterprise containerized environments.

Image Path: cleanstart/tomcat:latest

Registry: Docker Hub

Key Features

Core capabilities and strengths of this container

  • Production-ready container deployment
  • Enterprise-grade security hardening
  • Comprehensive monitoring and logging
  • Multi-architecture support

Common Use Cases

Typical scenarios where this container excels

  • Production application deployment
  • Microservices architecture implementation
  • Development and testing environments
  • Enterprise workload containerization

Pull Latest Image

Download the container image from the registry

docker pull cleanstart/tomcat:latest
docker pull cleanstart/tomcat:latest-dev

Basic Run

Run the container with basic configuration

docker run -it --name tomcat cleanstart/tomcat:latest

Production Deployment

Deploy with production security settings

docker run -d --name tomcat-prod \
  --security-opt=no-new-privileges \
  --restart unless-stopped \
  cleanstart/tomcat:latest

Volume Mount

Mount local directory for persistent data

docker run -v /app:/app cleanstart/tomcat:latest

Port Forwarding

Run with custom port mappings

docker run -p 8080:8080 cleanstart/tomcat:latest

Environment Variables

Configuration options available through environment variables

VariableDefaultDescription
PATH/usr/local/sbin:/...System PATH configuration

Security Best Practices

Recommended security configurations and practices

  • Use specific image tags for production (avoid latest)
  • Configure resource limits: memory and CPU constraints
  • Enable read-only root filesystem when possible
  • Run containers with non-root user (--user 1000:1000)
  • Use --security-opt=no-new-privileges flag
  • Regularly update container images for security patches
  • Implement proper network segmentation
  • Monitor container metrics for anomalies

Kubernetes Security Context

Recommended security context for Kubernetes deployments

securityContext:
  runAsNonRoot: true
  runAsUser: 1000
  runAsGroup: 1000
  readOnlyRootFilesystem: true
  allowPrivilegeEscalation: false
  capabilities:
    drop:
      - ALL

Documentation Resources

Essential links and resources for further information

CleanStart Images: https://images.cleanstart.com/

Community Images:
Docker Hub: https://hub.docker.com/u/cleanstart
GitHub: https://github.com/cleanstart-containers
AWS ECR Public Gallery: https://gallery.ecr.aws/cleanstart/

Presence on Social Media:
Community: https://www.linkedin.com/groups/18324021/
YouTube: https://www.youtube.com/@CleanStartOfficial

Contribute to Container Use Cases: https://github.com/cleanstart-dev/cleanstart-use-cases/

Tag summary

Content type

Image

Digest

sha256:16526833b

Size

99.6 MB

Last updated

about 20 hours ago

docker pull cleanstart/tomcat:11.0.24-amd64