alt Hacker NewsThis was not always true and running rootless has been a benefit of Podman for a long time. Docker also does not run rootless by default afaik, thus making the attack surface greater by default.
The other main improvement of Podman over Docker is that Podman is daemonless and therefor is incredibly lightweight and portable.
Replies
vdfs • yesterday at 10:57 PM
Daemonless also make it a nightmare to run especially compose like setup, you have to do some weird systemd stuff
I don't understand why anyone still uses docker.