# 安全

评估 Docker 的安全性时，主要考虑三个方面:

* 由内核的命名空间和控制组机制提供的容器内在安全
* Docker 程序（特别是服务端）本身的抗攻击性
* 内核安全性的加强机制对容器安全性的影响


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://hezhiqiang.gitbook.io/docker/security.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.