So I have the need to allow a certain service the cap_net_bind_service ability, which unfortunately isn’t available right now under Swarm. I was wondering if anyone has a workaround? I don’t mind even setting a separate cluster for this particular service, if I need to mound the entire /dev folder to it or make changes that will make every container privileged, as long as it works.
So I was wondering, is there any workaround available? As I said, I don’t mind giving every container full root access if needed.