I want to run docker in docker but without the privilege flag. Ready to give the required capabilities and ready to mount the required volumes from host as well. Just want to understand what the privilege flag does which is not covered by cap-add ALL.
Asked
Active
Viewed 174 times
0
-
Can you use a `docker run -v` option to inject host content into the container, without setting any special privilege flags at all? – David Maze Sep 29 '22 at 11:16
-
I think [Privileged containers and capabilities](https://stackoverflow.com/questions/36425230/privileged-containers-and-capabilities) has an answer for your specific question, with a reference to Docker documentation discussing additional cgroup-related restrictions that `--privileged` removes (along with several comments that you probably don't want a privileged container in any normal use). – David Maze Sep 29 '22 at 11:19