User namespaces and capabilities are important kernel functionality to make containers secure. They allow to better isolate containers and limit the privileges a container might have. A while back a user reported a bug where some odd behavior was noticed when namespaces are shared between containers which could lead to security problems. Lets take closer…
I have been working on adding HyperV as a supported virtualization option for Podman machine. Within the next couple of weeks, I will be looking for folks to test my progress and shake out as many bugs as possible before the code is officially released. If you are familiar with Podman machine and have experience…
As 2022 comes to a close, I wanted to highlight the great progress that Podman has made over the last year. Almost 5 years after our first public release, Podman continues to grow at a rapid pace, with hundreds of new features added over the last year. Let’s go over some of the highlights and…
I have yet to bump into perfect software. Bugs, failures, and short-comings are the reality of software developers. They often have upsides whether it might be learning about a new area of code in a larger application or coming up with ideas to prevent problems. We had an interesting problem brought to our attention recently…
We are pleased to announce the release of aardvark-dns and netavark v1.4.0. It has not been that long since the respective v1.3.0 releases but we had new function we wanted to get out into the community. In the aardvark-dns release, the key new function was provided by commit 01a9f18f411b9766e6476fc53c395844aa3cb62e which is titled add support for…
We recently added a new project called bootc to our Github containers organization! It is self-described as “Transactional, in-place operating system updates using OCI/Docker container images.” In an earlier blog, I described how you can use a standard Containerfile to build a bootable operating system for something like Fedora CoreOS. Bootc can then pull the…
Developers are always asking us about how to customize Podman machine to add or subtract content. Up until recently, the answer has always been to use the cosa tooling to create the operating system and a qcow image. The process is not particularly difficult but it does help to have fast disk I/O […]
Sign up with your email address to receive updates by email from this website.