From c77ff29030b4149b6e76966625c635282834c38c Mon Sep 17 00:00:00 2001
From: Lawrence Gripper <lawrencegripper@github.com>
Date: Thu, 1 Feb 2024 15:53:21 +0000
Subject: [PATCH] Add note for selinux enabled systems

---
 docs/usage-overview.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/docs/usage-overview.md b/docs/usage-overview.md
index 1cac35288..7cc725b6b 100644
--- a/docs/usage-overview.md
+++ b/docs/usage-overview.md
@@ -11,6 +11,10 @@ docker run -d \
   containrrr/watchtower
 ```
 
+!!! note "On SELinux enabled systems you cannot mount the docker socket by default"
+  Watchman will start and show "Permission Denied" errors. To fix this add [`--security-opt label=disable`](https://docs.docker.com/engine/security/seccomp/#pass-a-profile-for-a-container) to the docker command to disable 
+  the protection for this container and allow it to mount the docker socket.
+
 If pulling images from private Docker registries, supply registry authentication credentials with the environment variables `REPO_USER` and `REPO_PASS`
 or by mounting the host's docker config file into the container (at the root of the container filesystem `/`).