Docker Community Forums

Share and learn in the Docker community.

How to restrict container to ONLY defined volumes?

All my containers seem to have access to at least see a whole slew of folders that appear to exist within /var/lib/docker/overlay2

They aren’t really “valid” folders (all empty, so probably due to permissions) but how do I hide them? There must be a flag or something. Annoying when I define one or two volumes and have to dig through all these other folders to find them.

None of my containers see anything from the host, unless I specificly bind them as a volume into a container.

Please share the actions/commands that allow to reproduce what you are seeing.

You can specify an external volume in your Marathon app definition.

I hope this helped! thanks by the way!You can specify an external volume in your Marathon app definition.

Type enforcement revolves around defining a type and assigning privileges to those types!