Docker Community Forums

Share and learn in the Docker community.

Secure Shared Memory - what is the Impact on docker engine?

Hi,

I have docker installed on Ubuntu 18.04 server.
We are currently working on hardening and securing all of our Ubuntu servers, and one of the main and popular recommendations is to secure shared memory.
We can either limit shared memory with noexec and nodev flags or we can opt to mount it in read-only mode completely.

Before I do any changes to my server I am trying to understand the impact and implications it might have on the docker engine.

Thanks for the help.