Running an additional Docker daemon
Containerized Docker daemon
Requires a privileged container
Privileged containers enable host breakouts
Isolating a Docker daemon:
docker run -d --rm \
--privileged \
--name dind \
docker:dind
docker exec -it dind docker version