Hey Montassar,
By default, Docker containers are “unprivileged” and cannot, for example, run a Docker daemon inside a container. This is because by default a container is not allowed to access any devices, but a “privileged” container is given access to all devices.
When the operator executes docker run --privileged, Docker will enable to access to all devices on the host as well as set some configuration in AppArmor or SELinux to allow the container nearly all the same access to the host as processes running outside containers on the host.
To read more about “privileged” mode for containers visit
this blog post.
Sincerely,