system-docker or (user-)docker?

29 views
Skip to first unread message

pw Foo

unread,
Jun 20, 2015, 5:27:40 PM6/20/15
to ranc...@googlegroups.com
There are some management containers like
  • RancherServer (admin only)
  • RancherAgent (admin only, privileged, volume /var/run/docker.sock)
  • RancherVM (admin only)
  • Nginx-Proxy (separated into two containers)
    • nginx (admin only, dynamic config)
    • docker-gen (volume /var/run/docker.sock:ro)
So should all run inside (user-)docker or should some moved to system-docker? As system-docker it's separate production / customer containers, but what's about security as system-docker containers?

Ivan Mikushin

unread,
Jul 8, 2015, 4:20:57 AM7/8/15
to ranc...@googlegroups.com
The rule of thumb here is don't use system-docker unless you really have to: system-docker is basically needed for the operating system core services, like udev and network. 
Reply all
Reply to author
Forward
This conversation is locked
You cannot reply and perform actions on locked conversations.
0 new messages