FOSSTECH Notes

Quick one-liner: Install Docker in rootless mode on SUSE Linux Enterprise Server (SLES) 15 or 16 using openSUSE repositories — no root privileges required for daily container operations. Why This Matters When I first started with Docker, I ran everything as root. It was easy, it worked, and I didn't think twice about it. Then I learned that a container escape vulnerability could give an attacker full root access to my entire system. That's when I switched to rootless Docker — and you should too. Rootless Docker runs the Docker daemon entirely under your regular user account. No sudo required. No root privileges for container operations. If a container gets compromised, the attacker is stuck with your user's permissions — not root. Why SLES? This guide was written based on community votes — many of you asked for SUSE-specific instructions. Here's the thing: Docker CE doesn't publish official packages for SLES. Instead, we use the openSUSE Virt...

Quick one-liner: All the container power, none of the root-level risk. Why This Matters When I first started with Docker, I ran everything as root. It was easy, it worked, and I didn't think twice about it. Then I learned that a container escape vulnerability could give an attacker full root access to my entire system. That's when I switched to rootless Docker — and you should too. Rootless Docker runs the Docker daemon entirely under your regular user account. No sudo required. No root privileges for container operations. If a container gets compromised, the attacker is stuck with your user's permissions — not root. You asked, I delivered: This guide was the #1 request in my LinkedIn poll (Ubuntu/Linux Mint won with 50% of votes). Planning Disk Space In rootless mode, Docker stores all images, containers, volumes, and build cache under your home directory at ~/.local/share/docker . This means your home directory needs enough space to hold every...

I never got through most technical books. Too much theory. Too many words. Not enough action. So I wrote the book I wished existed — practical, concise, and straight to the point. Just enough explanation to get things done. Why This Book? Over the past 5 years, I've worked with Docker in training rooms, client environments, and real production deployments in Singapore — teaching engineers, advising on architecture, and rolling it out on actual infrastructure. Docker comes up everywhere, and so does the same question: where do I start? The problem isn't capability. It's always the same thing: people get lost in the theory before they ever run a single container. They read about namespaces and cgroups and layer caches, and by the time they get to an actual command, they've lost the thread. So I started keeping notes — just the practical bits. The commands that actually matter. The patterns that show up again and again in real deployments. During Chinese New ...