action #87976
Updated by jlausuch over 3 years ago
Running the container tools as a user with superuser privilege (root user) is the best way to ensure that your containers have full access to any feature available on your system. However, with a new feature called "Rootless Containers," available now, you can work with containers as a regular user.
Although container engines, such as Docker, let you run docker commands as a regular (non-root) user, the docker daemon that carries out those requests runs as root. So, effectively, regular users can make requests through their containers that harm the system, without there being clarity about who made those requests. By setting up rootless container users, system administrators limit potentially damaging container activities from regular users, while still allowing those users to safely run many container features under their own accounts.
https://developers.redhat.com/blog/2020/09/25/rootless-containers-with-podman-the-basics/
Jira epic: https://jira.suse.com/browse/SLE-14574