Install Static Binaries and Docker Client on macOS

point is not sufficient. See Github issues [#2683](https://github.com/moby/moby/issues/2683), [#3485](https://github.com/moby/moby/issues/3485), [#4568](https://github.com/moby/moby/issues/4568)). #### Secure your environment as much as possible ##### OS considerations Enable SELinux or AppArmor if possible. It is recommended to use AppArmor or SELinux if your Linux distribution supports either of the two. This helps improve security and blocks certain types of exploits. Review the documentation for your Linux distribution for instructions for enabling and configuring AppArmor or SELinux. > **Security warning** > > If either of the security mechanisms is enabled, do not disable it as a > work-around to make Docker or its containers run. Instead, configure it > correctly to fix any problems. ##### Docker daemon considerations - Enable `seccomp` security profiles if possible. See [Enabling `seccomp` for Docker](../security/seccomp.md). - Enable user namespaces if possible. See the [Daemon user namespace options](/reference/cli/dockerd/#daemon-user-namespace-options). ### Install static binaries 1. Download the static binary archive. Go to [https://download.docker.com/linux/static/stable/](https://download.docker.com/linux/static/stable/), choose your hardware platform, and download the `.tgz` file relating to the version of Docker Engine you want to install. 2. Extract the archive using the `tar` utility. The `dockerd` and `docker` binaries are extracted. ```console $ tar xzvf /path/to/<FILE>.tar.gz ``` 3. **Optional**: Move the binaries to a directory on your executable path, such as `/usr/bin/`. If you skip this step, you must provide the path to the executable when you invoke `docker` or `dockerd` commands. ```console $ sudo cp docker/* /usr/bin/ ``` 4. Start the Docker daemon: ```console $ sudo dockerd & ``` If you need to start the daemon with additional options, modify the above command accordingly or create and edit the file `/etc/docker/daemon.json` to add the custom configuration options. 5. Verify that Docker is installed correctly by running the `hello-world` image. ```console $ sudo docker run hello-world ``` This command downloads a test image and runs it in a container. When the container runs, it prints a message and exits. You have now successfully installed and started Docker Engine. {{% include "root-errors.md" %}} ## Install client binaries on macOS > [!NOTE] > > The following instructions are mostly suitable for testing purposes. The macOS > binary includes the Docker client only. It does not include the `dockerd` daemon > which is required to run containers. Therefore, we recommend that you install > [Docker Desktop](/manuals/desktop/_index.md) instead. The binaries for Mac also do not contain: - A runtime environment. You must set up a functional engine either in a Virtual Machine, or on a remote Linux machine. - Docker components such as `buildx` and `docker compose`. To install client binaries, perform the following steps: 1. Download the static binary archive. Go to [https://download.docker.com/mac/static/stable/](https://download.docker.com/mac/static/stable/) and select `x86_64` (for Mac on Intel chip) or `aarch64` (for Mac on Apple silicon),

The guide details how to install Docker from static binaries on Linux, focusing on prerequisites like kernel version, iptables, git, and cgroupfs setup, along with emphasizing security measures such as enabling SELinux/AppArmor and `seccomp` profiles. The instructions then walk through downloading the static binary archive, extracting it, optionally moving the binaries to an executable path, starting the Docker daemon, and verifying the installation with the `hello-world` image. Additionally, the guide provides instructions on how to install the Docker client binaries on macOS. Note that the macOS binary does not include the `dockerd` daemon and recommends installing Docker Desktop instead.