I have an existing docker host with containers on Linux (Alpine Linux) running in privileged mode and want to switch to user namespace isolation for added security.
For instance do I need to delete all containers first ?
I see from the docker documentation I will need to re-pull all images but is there an order I need to do things?
Here’s my starter for 10 if anyone wanted to correct…
- Shutdown and delete all containers (keep volumes intact)
- Delete all images
- Enable User Namespace isolation (restart docker)
- Recreate all docker volumes
- Move docker volume data from previous location (ensure permissions are correct)
- Recreate all containers