this post was submitted on 10 Feb 2025
40 points (97.6% liked)

Explain Like I'm Five

14968 readers
1 users here now

Simplifying Complexity, One Answer at a Time!

Rules

  1. Be respectful and inclusive.
  2. No harassment, hate speech, or trolling.
  3. Engage in constructive discussions.
  4. Share relevant content.
  5. Follow guidelines and moderators' instructions.
  6. Use appropriate language and tone.
  7. Report violations.
  8. Foster a continuous learning environment.

founded 2 years ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
[email protected]
40
ELI5: Docker containers (feddit.org)
submitted 1 week ago by [email protected] to c/[email protected]
21 comments fedilink hide all child comments
 

I can't seem to wrap my head around (Docker) containers and especially their maintenance.
As I understand it, containers contain a stripped-down OS that shares some resources with the host?
Or is it more like a closed-off part of the file system?

Anyway, when I have several containers running on a host system,
Do I need to keep them all updated separately? If so, how?
Or is it enough to update the host system, and not worry about the containers?

you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 5 points 1 week ago (5 children)

I'd say it's more like a closed-off part of the filesystem but with networking and probably lots of other stuff closed off as well.

Updates on the host are separate from updates of the containers. Ideally the host has only the minimal stuff needed to run the containers.

Containers are usually updated when the contained apps are updated. That's actually my main concern with containers. When the main app doesn't need an update but some dependency needs one you have to actively update the dependency unless the app maintainers keep up with what their dependencies are doing. And usually you don't even know what the dependencies are. Because the whole point of containers is that you only care about the main app.

[โ€“] Alk 8 points 1 week ago

To elaborate on this, when you want an update, you "update the container." This usually means downloading an entirely new container image and replacing yours with the new one, which has new internal versions and data but works the exact same. You rely on the supplier of the container (if you didn't make it yourself) to do all of that for you, and you just receive the update when you request it.

So ideally, dependencies will be taken care of for you when the container updates, if you are using a pre-built container.

load more comments (4 replies)