Recursive namespaces to run containers inside a container
We would like to deploy a containerized workload that creates nested containers to isolate individual tasks. This post explores the challenges of safely running a container inside a container. In three parts, I present:
- User namespaces.
- Required capabilities …