We use Docker to containerize apps in cloudron. One issue we have faced is that --readonly and user namespaces don't work together. Is there any on-going effort on this front? I can't find a link now but this limitation is hidden somewhere deep inside the docker docs :/ For cloudron apps, we simply decided that readonly was more important than user namespaces for now.
cpuguy83|9 years ago