UCP system containers as non-root?

6 views
Skip to first unread message

Igor MV

unread,
Jun 20, 2020, 5:25:39 PM6/20/20
to docker-dev
My manager asked me to isolate root’s namespace of all UCP containers. I will add root:381982:65536 in /etc/subuid and /etc/subgid Am I in the right path or am I going to broke the environment ?

My Official references were:

https://docs.docker.com/engine/security/userns-remap/

https://docs.docker.com/engine/security/rootless/


https://docs.docker.com/engine/install/linux-postinstall/
Reply all
Reply to author
Forward
0 new messages