I ditched Docker for Podman

Posted by codesmash 9/5/2025

I ditched Docker for Podman(codesmash.dev)

1123 points | 654 commentspage 9

dathinab 9/5/2025|

In addition to rootless podman / root docker there are some other options:

- rootless docker, works fine, not fully sure why it's not the default by now (I do have issues form time to time but I had the same issues with root docker)

- rootfull podman

- running docker/podman daemon as a different and non root user (but have fun trying to mount anything !?)

qalmakka 9/5/2025||

In my experience Podman is better but always ends up having some wonky bug (like, the other day, secrets didn't mount anymore during builds). Rootless, daemonless is great but it's basically bound to have some extra tinkering required compared to "a stupid daemon running as root"

mrits 9/5/2025||

My favorite part of the blog is how the author lets us know he is pretty young to reference vagrant as old.

the__alchemist 9/5/2025||

Vagrant was one of my first intros to programming (2 Scoops of Django tutorial). It and Chef were a nightmare that almost made me quit in frustration!

codesmash 9/5/2025|||

Thank you - you've made my day! Last time I felt like that when a lady asked my about the ID at the liquor store :)

esseph 9/5/2025||

vagrant was released 15 years ago (2010) =)

mrits 9/5/2025||

About 20 years after the IRC crowd peaked which seems to be a large portion of this community

Lariscus 9/5/2025||

Rootless podman in combination with systemd quadlet works great for me. I host all my personal services like that. Having containers integrated directly into systemd makes mapping out dependencies between mounts and other non containerized services much more reliable and easier.

crinkly 9/5/2025||

Yeah I have done this as well.

I write programs that run on the target OS again. It's much easier, turnaround time is much quicker, it's faster. Even battery lasts longer on my laptop. What the hell have we done to ourselves with these numerous layers of abstraction?!?

taspeotis 9/6/2025||

Podman works 99% for me, it’s getting better each release. But every so often I get bitten by some incompatibility and have to use Docker.

At the moment it seems docker compose misbehaves with Podman when WSL2 gets involved.

I look forward to when I can replace Docker entirely.

bval 9/5/2025||

I have used Podman before, and it just works. However, for the past 8 months, I've been using https://orbstack.dev/, and I can confidently say that it's much better.

acdha 9/5/2025||

I switched for local development work a couple of years back and can count on no fingers the number of times I thought about switching back. It let me stop thinking about the Docker Mac high CPU issue which was open for years with no progress, too.

jamra 9/5/2025|

Very nice. Macs have a new containers program. It’s open source on github but not ready for the current MacOS version. Might be an even better approach as it’s made by Apple.

acdha 9/5/2025||

Yeah, I’ll take a look after I upgrade but I haven’t had to spend time on Podman in years so there’s an upper bound for how much it can improve my life.

jnovacho 9/5/2025||

> Privileged ports in rootless mode not working? Good! That's security working as intended. A reverse proxy setup is a better architecture anyway.

So, how are you supposed to run the proxy inside the container? Traefik for example? Genuinely curious.

eddieroger 9/5/2025||

Don't run it in rootless for your reverse proxy? Having one container running that way is still better than having all of them work that way.

sharts 9/5/2025|

The fact that people keep conflating docker desktop and the docker engine is crazy.

More comments...