Articles
-
Netavark 1.14 new features
Read more: Netavark 1.14 new featuresNetavark and Aardvark-dns v1.14 are out. Thanks to our contributors, the Netavark release is on the bigger side and did get quite a few features. So let’s have a look; all the features assume that you are also using Podman v5.4 DHCP Hostname Netavark now sends the container hostname as part of the DHCP request.…
-
Podman introduces support for OCI artifacts
Read more: Podman introduces support for OCI artifactsOpen Container Initiative (OCI hereafter) artifacts have been evolving with some significance lately. Projects like OCI Registry As Storage (ORAS) have been stalwarts in this arena. In fact, I think ORAS probably has the best explanation of artifacts. It is certainly worth a read if you are at all unfamiliar with the topic. In short,…
-
Why does SELinux container policy allow all Linux capabilities?
Read more: Why does SELinux container policy allow all Linux capabilities?I recently had a discussion in a container-selinux issue on why we allow certain capabilities by default for containers. The conversation is around DAC_OVERRIDE, a Linux capability which allows privileged processes, usually root, to ignore ownership and read/write permissions Discretionary Access Control (DAC). “As @wrabcak notes in Why do you see DAC_OVERRIDE SELinux denials?, In…
-
Podman v4.6 Introduces Podmansh: A Revolutionary Login Shell
Read more: Podman v4.6 Introduces Podmansh: A Revolutionary Login ShellIntroduction In the ever-evolving landscape of container technology, Podman’s latest version, v4.6.0, includes a feature that promises to be a game-changer for system administrators: Podmansh. A login shell that leverages Podman’s robust container management capabilities. Podmansh is set to redefine the way users interact with systems, while ensuring maximum security and control for administrators. Why…
-
Podman Performance: Root and Rootless
Read more: Podman Performance: Root and RootlessOne of the frequent complaints I hear from users moving to Podman is about performance. I’ve always found this confusing, as the Podman team has spent significant time and effort on improving our performance, and we are quite confident that our speed is broadly comparable to Docker. Indeed, an academic paper found that Podman was…
Subscribe
Sign up with your email address to receive updates by email from this website.
Latest news
- Migration to the Container-Libs Monorepo is Complete
- Podman 5.6 Released: Rosetta Status Update
- Podman 5.6 Released
- Unlocking Speed: Accelerating Parallel Layer Removal in Podman v5.6
- Level Up Your Container Game: Unified Quadlet Management is Now Natively in Podman
Categories
- Advanced (11)
- Announcement (27)
- Articles (5)
- Blog (15)
- Buildah (2)
- Community (4)
- New Feature (11)
- Newcomer (22)
- Podman (15)
- Podman Desktop (2)
- Releases (4)
- Skopeo (2)
- Tips and Tricks (19)
- Tutorials (3)
- Uncategorized (10)