-
|
What are the pros and cons for running rootfull with For me in the context of long running services using systemd, you would avoid user services. And if I understand user namespaces correctly, they are equivalent in terms of privilege, once the container has started. |
Beta Was this translation helpful? Give feedback.
Replies: 1 comment 1 reply
-
|
In my opinion the --userns=auto is better then running a bunch of services in rootless mode, mainly because the services would run in unigue usernamespaces, as opposed to running more then one service with the same rootless user, where more then likely the services are running in the same user namespace. |
Beta Was this translation helpful? Give feedback.
-
|
Thanks Dan, I don't see a lot of people talk about |
Beta Was this translation helpful? Give feedback.
In my opinion the --userns=auto is better then running a bunch of services in rootless mode, mainly because the services would run in unigue usernamespaces, as opposed to running more then one service with the same rootless user, where more then likely the services are running in the same user namespace.