podman is free and available in most distributions now. One of the advantages of podman, even if you're still running containers as root, is that is plays nicely with systemd/cgroups. Docker containers would end up running in whatever cgroup the docker daemon was running in rather than the one the docker command was run from.
So in a way, podman can be made even more secure than Docker as it can be run in a cgroup with restricted permissions just for that application. On Thu, May 4, 2023, at 9:57 AM, Snyder, Alexander J via PLUG-discuss wrote: > Is podman free? I assumed it was locked up behind a rhel subscription > pay-wall. > -- > Thanks, > Alex. > > > > > On Mon, Apr 3, 2023 at 1:49 PM Shaun Anderson via PLUG-discuss > <[email protected]> wrote: >> Some churn going on in the Docker space right now. >> https://github.com/docker/hub-feedback/issues/2314#issuecomment-1468633085 >> >> Organizations that host their images are having to convert their free legacy >> accounts to newer organization accounts and sounds like it's not going >> smoothly. This could mean that one day you do a 'docker pull' and it can't >> find that image anymore because the account/repo has been shutdown. >> >> I'm converting my things to podman since you can run it rootless, and >> because I do a lot in RHEL anyways so why not. >> >> Might not affect what you're looking to do but something to keep an eye on. >> >> -Shaun >> >> On Mon, Apr 3, 2023 at 12:37 PM Stephen Partington via PLUG-discuss >> <[email protected]> wrote: >>> I have used RHEL, Ubuntu (Preferred), and Amazon Linux (RHEL/Cent related) >>> >>> Docker doesn't care too much, choose the Distro you trust and go from there. >>> >>> On Mon, Apr 3, 2023 at 3:34 PM Steve B via PLUG-discuss >>> <[email protected]> wrote: >>>> I"m looking to dip my toes into Docker for use on my home network. Reading >>>> up on what to consider for running atop the bare metal it seems like two >>>> of the most mentioned have been discontinued - CoreOS and RancherOS, and >>>> Atomic supposedly is not quite ready for production. At least according to >>>> some articles. >>>> >>>> What are others using to host their Docker containers on their home >>>> networks? >>>> >>>> Steve >>>> --------------------------------------------------- >>>> PLUG-discuss mailing list: [email protected] >>>> To subscribe, unsubscribe, or to change your mail settings: >>>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss >>> >>> >>> -- >>> A mouse trap, placed on top of your alarm clock, will prevent you from >>> rolling over and going back to sleep after you hit the snooze button. >>> >>> Stephen >>> --------------------------------------------------- >>> PLUG-discuss mailing list: [email protected] >>> To subscribe, unsubscribe, or to change your mail settings: >>> https://lists.phxlinux.org/mailman/listinfo/plug-discuss >> --------------------------------------------------- >> PLUG-discuss mailing list: [email protected] >> To subscribe, unsubscribe, or to change your mail settings: >> https://lists.phxlinux.org/mailman/listinfo/plug-discuss > --------------------------------------------------- > PLUG-discuss mailing list: [email protected] > To subscribe, unsubscribe, or to change your mail settings: > https://lists.phxlinux.org/mailman/listinfo/plug-discuss >
--------------------------------------------------- PLUG-discuss mailing list: [email protected] To subscribe, unsubscribe, or to change your mail settings: https://lists.phxlinux.org/mailman/listinfo/plug-discuss
