Loading…
DevConf.CZ 2019 has ended

Friday, January 25 • 12:00pm - 12:50pm
Rootless containers

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
In this talk we will discuss how to build and run containers without root privileges. As part of the discussion, we will introduce new programs like fuse-overlayfs and slirp4netns and explain how it is possible to do this using user namespaces. fuse-overlayfs allows to use the same storage model as "root" containers and use layered images. slirp4netns emulates a TCP/IP stack in userland and allows to use a network namespace from a container and let it access the outside world (with some limitations).

We will also introduce Usernetes, and how to run Kubernetes in an unprivileged user namespace

Speakers
avatar for Giuseppe Scrivano

Giuseppe Scrivano

Principal Software Engineer, Red Hat
Working on containers, specifically on tools like Podman, Buildah, CRI-O.
avatar for Akihiro Suda

Akihiro Suda

Software Engineer, NTT
Akihiro Suda is a software engineer at NTT Corporation, a Japan-based telecommunication company. He has been a core maintainer of Moby (former Docker Engine) since November 2016. He has been also a maintainer of several opensource container software such as CNCF containerd and Moby... Read More →



Friday January 25, 2019 12:00pm - 12:50pm
D105

Attendees (191)