Containers

Are there disadvantages in running rootless containers?

Difficulty: unrated

Source: bregman-arie/devops-exercises by Arie Bregman

Answer

Yes, the full list can be found here.

Some worth to mention:

  • No binding to ports smaller than 1024
  • No images sharing CRI-O or other rootful users
  • No support running on NFS or parallel filesystem homerdirs
  • Some commands don't work (mount, podman stats, checkpoint, restore, ...)