Free & Open Source Photography Zola 2025-02-13T00:00:00+00:00 https://fosstog.com/tags/containers/atom.xml 2025-02-13T00:00:00+00:00 2025-02-13T00:00:00+00:00 ganthore https://fosstog.com/blog/quadlets/ <p><strong>TL;DR</strong>: Docker is out, <a rel="noopener external" target="_blank" href="https://podman.io/">Podman</a> is in, and I’m running everything as a regular user through <a rel="noopener external" target="_blank" href="https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html">systemd quadlets</a>. It took longer than it should have and I’d do it again.</p> <p>Over the years I’ve been methodically replacing my Docker setup with Podman and migrating my containers to run at the user level through <a rel="noopener external" target="_blank" href="https://docs.podman.io/en/latest/markdown/podman-systemd.unit.5.html">systemd quadlets</a>. The pitch is simple: no daemon running as root, native systemd integration, and containers that behave like proper services instead of processes you’re just hoping stay alive.</p> <p>The transition was not painless. Podman is not a drop-in replacement in every meaningful sense, and some tools have the Docker socket burned so deep into their DNA that migrating them felt like performing surgery with oven mitts. I got there eventually, with enough workarounds to wallpaper a small room.</p> <p>Right now I’m focused on three things:</p> <ul> <li>Hardening security</li> <li>Finding proper replacements for tools that were clearly designed with Docker in mind</li> <li>Replacing my current DNS setup with something less likely to cause me grief at 2am</li> </ul> <p>The highlight so far: I packed <a rel="noopener external" target="_blank" href="https://www.moddb.com/mods/the-specialists">an old Half-Life 1 mod</a> into an Alpine image and got it connecting to the Steam network. Completely unnecessary. Worth every minute.</p>