Privileged containers in kubernetes

0 votes

So, if I run a container in priveleged mode, will it have kernel capabilities or will I have to add them later?

Sep 11, 2018 in Docker by DragonLord999
• 8,450 points
1,447 views

1 answer to this question.

0 votes

Your container will have kernel capabilities if you run it in privileged mode, but still it is considered good practice if you give a container minimum requirement.

Full container capabilities (--privileged)

The --privileged flag gives all capabilities to the container, and it also lifts all the limitations enforced by the device cgroup controller. In other words, the container can then do almost everything that the host can do. This flag exists to allow special use-cases, like running Docker within Docker.

You can provide specific capabilities using --cap-add flag. Check this for more info man 7 capabilities.

answered Sep 11, 2018 by DareDev
• 6,890 points

Related Questions In Docker

0 votes
1 answer

How to list containers in Docker

To show only running containers use the given command: docker ...READ MORE

answered Jul 20, 2018 in Docker by Kalgi
• 52,370 points
190 views
+1 vote
4 answers

Docker compose, running containers in net:host

Hey@Hannah, Check the compose file format specifications ...READ MORE

answered May 7, 2019 in Docker by Kishore
3,752 views
0 votes
1 answer
0 votes
2 answers
+2 votes
1 answer
+5 votes
7 answers

Docker swarm vs kubernetes

Swarm is easy handling while kn8 is ...READ MORE

answered Aug 27, 2018 in Docker by Mahesh Ajmeria
1,675 views
+4 votes
7 answers

If conditional in docker file

First of all, create a build_internal.sh file ...READ MORE

answered May 29, 2018 in Docker by DareDev
• 6,890 points
79,451 views
0 votes
1 answer

No output in output file even though pexpect scrift runs succesfully

You've got to wait til the ls ...READ MORE

answered Aug 10, 2018 in Docker by DareDev
• 6,890 points
1,801 views