new | show | ask | jobs Github

3np 5 days ago

This affects podman too.

▲

jsheard 5 days ago | parent [-]

Not if you run it in rootless mode, which is more of a first class citizen in Podman compared to Docker.

▲

3np 5 days ago | parent [-]

> Not if you run it in rootless mode.

Same as for docker, yes?

https://docs.docker.com/engine/security/rootless/

▲

wasmitnetzen 4 days ago | parent | next [-]

Rootless exists in Docker, yes, but as OP said, it's not first-class. The setup process is clunky, things break more often. In podman it just works, and podman is leading with features like quadlets, which make docker services just services like any other.

	▲	newsoftheday 4 days ago \| parent [-]
		No one wants, nor asked for, quadlets.

▲

exceptione 5 days ago | parent | prev [-]

nope. You should look at https://docs.docker.com/engine/network/

Networking is just better in podman.

	▲	joshuaissac 4 days ago \| parent [-]
		> nope. You should look at https://docs.docker.com/engine/network/ That page does not address rootless Docker, which can be installed (not just run) without root, so it would not have the ability to clobber firewall rules.