What is the difference between privileged mode (–privileged) and adding specific capabilities (–cap-add) in Docker?

Docker Fundamentals Hard

Docker Fundamentals — Hard

What is the difference between privileged mode (–privileged) and adding specific capabilities (–cap-add) in Docker?

Key points

  • --privileged removes container isolation
  • --cap-add follows least privilege principle
  • --privileged grants extensive permissions
  • --cap-add adds specific capabilities
  • --privileged is not recommended for security-sensitive applications

Ready to go further?

Start full exam Practice more questions

Related questions