Running as non-root in a container
Forcing a user docker run/exec --user
Executing docker
from a non-root account
Enabling user namespace mapping
Running the daemon as non-root
Based on user namespaces
GA since Docker 20.10
OverlayFS only on Ubuntu
Reduced network performance
Unable to open ports below 1024
Resource management only with cgroup v2