Coder Perfect

Chroot vs Docker


I’m attempting to master the fundamentals of container management (Docker in this case). Docker basically provides isolation by executing the container using runc, as far as I can tell from the Docker doc and other readings (previously using LXC). It utilizes the same kernel as the host system in either case. As a result, the container image must work with the host kernel. This reminds me a lot of what a chroot does. Could someone please explain the differences and/or benefits of using Docker instead of chroot? (in addition to Docker’s extras like packaging, docker-hub, and all of Docker’s other useful features)

Asked by rkachach

Solution #1

Docker uses namespaces to isolate a process at many levels:

All of this adds to the isolation provided by chroot.

Answered by Luc

Post is based on