Privileged containers in kubernetes

0 votes

So, if I run a container in priveleged mode, will it have kernel capabilities or will I have to add them later?

Sep 10, 2018 in Docker by DragonLord999
• 8,380 points
868 views

1 answer to this question.

0 votes

Your container will have kernel capabilities if you run it in privileged mode, but still it is considered good practice if you give a container minimum requirement.

Full container capabilities (--privileged)

The --privileged flag gives all capabilities to the container, and it also lifts all the limitations enforced by the device cgroup controller. In other words, the container can then do almost everything that the host can do. This flag exists to allow special use-cases, like running Docker within Docker.

You can provide specific capabilities using --cap-add flag. Check this for more info man 7 capabilities.

answered Sep 10, 2018 by DareDev
• 6,810 points

Related Questions In Docker

0 votes
1 answer

How to list containers in Docker

To show only running containers use the given command: docker ...READ MORE

answered Jul 20, 2018 in Docker by Kalgi
• 42,280 points
38 views
+1 vote
4 answers

Docker compose, running containers in net:host

Hey@Hannah, Check the compose file format specifications ...READ MORE

answered May 7 in Docker by Kishore
1,656 views
0 votes
1 answer
0 votes
2 answers
0 votes
1 answer
+5 votes
7 answers

Docker swarm vs kubernetes

Swarm is easy handling while kn8 is ...READ MORE

answered Aug 27, 2018 in Docker by Mahesh Ajmeria
1,032 views
+2 votes
6 answers

If conditional in docker file

You can use the test command RUN test ...READ MORE

answered Dec 10, 2018 in Docker by Shushant
18,426 views
0 votes
1 answer

No output in output file even though pexpect scrift runs succesfully

You've got to wait til the ls ...READ MORE

answered Aug 9, 2018 in Docker by DareDev
• 6,810 points
318 views