[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

[atomic-devel] Friends don't let friends run Docker on loopback in production

From: Colin Walters <walters verbum org>
To: atomic-devel projectatomic io
Subject: [atomic-devel] Friends don't let friends run Docker on loopback in production
Date: Wed, 15 Apr 2015 11:51:46 -0400

Hi,

I've seen several people using Docker on loopback; this is the default if you use a mainline system + yum install Docker, as opposed to an Atomic host which uses https://github.com/projectatomic/fedora-productimg-atomic and https://github.com/projectatomic/docker-storage-setup

I submitted this:

https://github.com/docker/docker/pull/12404

However, I think we can do more here.

- Anaconda UI for reserving a thin pool
- overlayfs

I'm thinking of making this warning even stronger (as in it's emitted on the client, not just part of the intense amount of spam the docker daemon emits every time you run a container[1]).

Any other thoughts?

[1] And we really need to fix NM to not spew lots when Docker makes veth devices (https://bugzilla.gnome.org/show_bug.cgi?id=731014 ) etc

Follow-Ups:
- Re: [atomic-devel] Friends don't let friends run Docker on loopback in production
  - From: Jason Brooks
- Re: [atomic-devel] Friends don't let friends run Docker on loopback in production
  - From: Radek Vykydal
- Re: [atomic-devel] Friends don't let friends run Docker on loopback in production
  - From: Vincent Batts

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]