Podman is an open-source OCI-based container engine like docker.

In most cases, docker containers run with root privileges.

If the container running as root privileges gets compromised, then the hacker will get admin access to the host.

Podman solves this problem by providing functionality to run containers rootless.

Podman gives the flexibility to choose a container with or without root privileges as per the needs.

A rootless container restricts user access by not providing admin access to the user who wishes to run containers.

Running containers as rootless has a few limitations as well. podman as rootless does not support NFS.