{"description": "To use Docker in production with the device mapper storage driver, the Docker\ndaemon should be configured to use direct-lvm instead of loopback device as\na storage. For setting up the LVM and configuring Docker, see the\n<a xmlns='http://www.w3.org/1999/xhtml' href='https://docs.docker.com/engine/userguide/storagedriver/device-mapper-driver/'>Docker Device Mapper Storage Documentation</a>.", "rationale": "For using Docker in production, the device mapper storage driver with loopback\ndevices is discouraged. The suggested way of configuring device mapper storage\ndriver is direct-lvm. Choosing the right storage driver and backing filesystem\nis crucial to stability and performance.", "severity": "low", "references": {}, "control_references": {}, "components": [], "identifiers": {}, "ocil_clause": null, "ocil": null, "oval_external_content": null, "fixtext": "", "checktext": "", "vuldiscussion": "", "srg_requirement": "", "warnings": [], "conflicts": [], "requires": [], "policy_specific_content": {}, "platform": "machine", "platforms": ["machine"], "sce_metadata": {}, "inherited_platforms": [], "cpe_platform_names": ["machine"], "inherited_cpe_platform_names": [], "bash_conditional": null, "fixes": {}, "title": "Use direct-lvm with the Device Mapper Storage Driver", "definition_location": "/aptdata/openscap/scap-security-guide/linux_os/guide/services/docker/docker_storage_configured/rule.yml", "template": null}