As an alternative to Docker, Podman has been validated by many of our teams. Podman introduces a daemonless engine for managing and running containers which is an interesting approach in comparison to what Docker does. Additionally, Podman can be easily run as a normal user without requiring root privileges, which reduces the attack surface. By using either Open Container Initiative (OCI) images built by Buildah or Docker images, Podman can be adapted to most container use cases. Apart from some compatibility issues with macOS, our team has had generally good experiences with Podman on Linux distributions.
Even though Docker has become the sensible default for containerization, we're seeing new players in this space that are catching our attention. That is the case for Buildah and Podman, which are complementary projects to build images (Buildah) and run containers (Podman) using a rootless approach in multiple Linux distributions. Podman introduces a daemonless engine for managing and running containers which is an interesting approach in comparison to what Docker does. The fact that Podman can use either Open Container Initiative (OCI) images built by Buildah or Docker images makes this tool even more attractive and easy to use.
