Not an App. OpenClaw is an open-source AI Agent framework / execution AI assistant that runs on your computer or server to execute real tasks, not chat. **Real Talk:** It's basically a junior engineer with sudo privileges.

What's the essential difference from ChatGPT / Claude?

In short: ChatGPT 'thinks', OpenClaw 'does'. ChatGPT: Answers questions, gives advice OpenClaw: Reads files, runs commands, modifies code, executes workflows **Real Talk:** ChatGPT is a consultant. OpenClaw is an intern who actually does the work.

Does OpenClaw have its own LLM?

No. It's a 'scheduler' that needs you to connect: OpenAI, Claude or local models. 👉 It doesn't sell models, just makes models 'work'. **Real Talk:** You're the DJ. OpenClaw is just the mixer.

Is my data private with local models?

**Short answer:** If you use Ollama locally, yes. The model runs on your machine. **How to verify:** Don't take my word for it. Block outbound traffic (except localhost) via Little Snitch or `ufw`. If OpenClaw still talks to your local Ollama, it's local. If it hangs, check your `base_url`. **Caveat:** If you use API providers (DeepSeek, OpenAI, Anthropic), your prompts go to their servers. Read their privacy policies.

Does it support DeepSeek API?

✅ Yes. Set `LLM_PROVIDER=openai` and `BASE_URL=https://api.deepseek.com`. **Config example (.env)**: ```bash LLM_PROVIDER="openai" LLM_BASE_URL="https://api.deepseek.com" LLM_API_KEY="sk-your-key-here" LLM_MODEL="deepseek-reasoner" ``` 👉 See our **[DeepSeek Config Guide](/guides/how-to-use-deepseek-with-openclaw)** for full setup.

Does it support local DeepSeek (Ollama)?

✅ Yes. Use `provider: ollama`. **Config example (.env)**: ```bash # Install Ollama & pull model curl -fsSL https://ollama.com/install.sh | sh ollama run deepseek-r1:8b # Configure OpenClaw LLM_PROVIDER="ollama" LLM_BASE_URL="http://localhost:11434/v1" LLM_MODEL="deepseek-r1:8b" ``` ⚠️ **Warning:** Requires heavy hardware. See **[Hardware Reality Check](/guides/fix-openclaw-cuda-oom-errors)**.

What is the relationship between OpenClaw and Ollama?

**Ollama is the engine; OpenClaw is the driver.** Ollama runs the DeepSeek model (loads it into VRAM, handles inference). OpenClaw tells it what to do (reads files, runs commands, executes workflows). If Ollama is down, OpenClaw is useless. If OpenClaw isn't running, Ollama is just a chatbot. **Analogy:** Ollama = Engine, OpenClaw = Driver. You need both to drive the car.

Do I need to know programming?

Basic use: No coding needed, but need basic logic Advanced use: Knowing some command line/project structure helps 👉 It's not 'zero barrier', but 'low barrier, high ceiling'. **Real Talk:** If you don't know what `chmod +x` means, you're going to have a bad time.

Can it run on Windows / Mac / Linux?

✅ Mac: Most friendly ✅ Linux / Server: First choice for production ⚠️ Windows: Usually via WSL2 (strongly recommended) **Symptom:** `Error: connect ECONNREFUSED 127.0.0.1:11434` (Networking issue) **Real Talk:** Mac users suffer slowly (3.2 tokens/sec). Windows users suffer dramatically (WSL2 drama). Linux users just suffer.

Can OpenClaw run continuously?

Yes. It can: run long-term, retry on failure, save intermediate state, stop by rules. This is why it's called an autonomous agent. **Real Talk:** That's also why it's called a 'security risk'. It doesn't know when to quit.

Why am I getting JSON parsing errors?

DeepSeek R1 wraps responses in `` tags before the actual JSON. OpenClaw's JSON parser fails. **Symptom:** `SyntaxError: Unexpected token <` (The model is 'thinking' out loud) 👉 **Fix it here:** **[JSON Parsing Fix](/guides/fix-openclaw-json-mode-errors)**.

Is OpenClaw safe? How to prevent Prompt Injection?

**Think of OpenClaw as a junior engineer with sudo privileges.** If you wouldn't trust a junior intern with root access to this folder, don't trust the agent. **Real incidents I've stopped:** - Agent tried to `rm -rf .` to "clean build artifacts" - Agent attempted `curl unknown.sh | bash` because it needed a tool **Mitigation**: - Run in Docker container with read-only filesystem - Use dedicated device (Mac Mini, cheap server) - Block dangerous commands (rm, format, dd, etc.) - Review EVERY execution log 👉 **Read the full autopsy:** **[CVE-2026-25253 Analysis](/guides/openclaw-security-rce-cve-2026-25253)**.

If you give too many permissions, yes. OpenClaw's capabilities ≈ permissions you give Correct approach: read-only by default, specify writable directories, block dangerous commands **Real Talk:** 'Going rogue' is just a fancy way of saying 'it did exactly what you told it to do, not what you meant'.

Suitable for production?

**Short answer:** Yes. **Honest answer:** Only if you have strict guardrails. Otherwise, expect to wake up at 3 AM. **Production requirements**: - You know exactly what the agent can and cannot do - You have tested EVERY workflow in staging - You have permission isolation (read-only by default) - You have logging AND rollback mechanisms - You have a human reviewing every action If you're missing any of these, you're not ready for production. 👉 Beginners should NOT start with production.

Fix 'Error: EACCES: permission denied' in OpenClaw Docker (openclaw.json)

TL;DR: The Instant Fix

The Problem: OpenClaw running in Docker can't write to openclaw.json or volumes due to UID mismatch. The container runs as node (UID 1000) but files are owned by root (UID 0).

The Error: EACCES: permission denied when accessing /home/node/.openclaw

The Solution:

Quick Fix: chown the directory to fix permissions

Real Fix: Run container as your user (no root needed)

Deploy on Vultr (H100/A100 Ready) (High Availability & Limited Time Promotion for new accounts)

The Log: What You're Seeing

The Error:

[INFO] Starting OpenClaw...
[ERROR] Failed to write config
Error: EACCES: permission denied, mkdir '/home/node/.openclaw'
    at Object.mkdirSync (node:fs:639:3)
    at saveConfig (/app/dist/index.js:42:11)
    at processTicksAndRejections (node:internal/process/task_queues:96:5)

[System] Config save failed
[Agent] Unable to initialize

Context: This error occurs when OpenClaw running in Docker tries to write configuration files or create directories but lacks permission.

Observed Behavior: Container starts but crashes when trying to save state or configuration.

Why This Happens (It's a UID Mismatch)

This is a Docker Permission Mismatch.

OpenClaw's Docker container assumes:

Files are writable by the container user
Volume mounts have correct ownership
UID/GID matches between host and container

But your setup has:

Container runs as node (UID 1000) by default
Files owned by root (UID 0) from docker exec or previous runs
Volume mount with root permissions from host

The error EACCES means: "Error ACcessES denied" — the filesystem rejected the write operation due to insufficient permissions.

Why Docker Containers Run as Root

Most Docker images run as root by default because:

Root can do anything inside the container
Simplifies installation (no permission issues during build)
Traditional assumption: containers are isolated anyway

The Problem: When you docker exec into a container as root, any files created become root-owned. When OpenClaw (running as node) tries to access them later — permission denied.

The UID Mismatch Explained

Container User: node (UID 1000)
Config File Owner: root (UID 0)

node tries to write → File is owned by root → EACCES: permission denied

Solution A: Fix Ownership with chown (Quick Fix)

If you've already created files with wrong ownership, fix them manually.

Step 1: Check Current Ownership

# Enter the container
docker exec -it openclaw-container sh

# Check file ownership
ls -la /home/node/.openclaw

# Output might show:
# -rw-r--r-- 1 root root  4096 Feb  4 10:23 openclaw.json
#              ^^^^ ^^^^
#              owned by root

Step 2: Fix Ownership

# Option 1: chown the specific file
chown node:node /home/node/.openclaw/openclaw.json

# Option 2: chown the entire directory
chown -R node:node /home/node/.openclaw

# Option 3: chown everything in home
chown -R node:node /home/node

Step 3: Fix Volume Mount Permissions

If using volume mounts, ensure correct ownership on the host:

# On your host machine
# Find the volume path
docker inspect openclaw-container | grep -A 10 Mounts

# Navigate to the volume location on host
cd /var/lib/docker/volumes/openclaw-data/_data

# Fix ownership
sudo chown -R 1000:1000 .

# Or use your exact UID/GID
id node
# uid=1000(node) gid=1000(node) groups=1000(node)
sudo chown -R 1000:1000 .

Solution B: Fix Dockerfile (Permanent Fix)

The best solution is to ensure OpenClaw runs as a non-root user from the start.

Step 1: Update Dockerfile

FROM node:18-alpine

# Install OpenClaw
RUN npm install -g openclaw

# Create non-root user
RUN addgroup -g 1000 node && \
    adduser -D -u 1000 -G node -h /home/node node

# Set working directory
WORKDIR /home/node

# Create .openclaw directory with correct ownership
RUN mkdir -p /home/node/.openclaw && \
    chown -R node:node /home/node/.openclaw

# Switch to non-root user
USER node

# OpenClaw config goes here
ENV OPENCLAW_CONFIG=/home/node/.openclaw/openclaw.json

CMD ["openclaw"]

Step 2: Rebuild Container

# Build new image
docker build -t openclaw:fixed .

# Stop old container
docker stop openclaw-container
docker rm openclaw-container

# Run with correct user
docker run -d \
  --name openclaw-container \
  -v openclaw-data:/home/node/.openclaw \
  openclaw:fixed

Solution C: Run as Your Host User (Best for VPS)

On a VPS or your Linux machine, run the container with your UID/GID to avoid permission issues entirely.

Step 1: Find Your UID/GID

# Check your user ID
id
# Output: uid=1000(youruser) gid=1000(youruser) groups=1000(youruser)

Step 2: Run Container with Your User

# Run container with your UID/GID
docker run -d \
  --name openclaw-container \
  --user $(id -u):$(id -g) \
  -v $(pwd)/openclaw-data:/home/node/.openclaw \
  node:18-alpine \
  npx openclaw start

This ensures all files created inside the container are owned by your user, not root.

Solution D: Rootless Docker (Most Secure)

For maximum security, use rootless Docker. This runs containers without root privileges at all.

Install Rootless Docker

# Ubuntu/Debian - Install docker-ce-rootless-extras package
sudo apt-get install -y docker-ce-rootless-extras

# Or use dockerd-rootless-setuptool.sh (included with modern Docker)
dockerd-rootless-setuptool.sh install

Run Rootless

# Rootless docker is just `dockerd` instead of `docker`
dockerd-rootless.sh install

# Run containers without root
docker run -d \
  --name openclaw-container \
  -v openclaw-data:/data \
  openclaw:latest

Benefit: No root required, ever. All files are owned by your user automatically.

The "Survival" Recommendation

Stop debugging Docker permissions on your local machine.

Docker permissions on local Linux/Mac can be a nightmare. UIDs don't match, volume mounts are root-owned, chown feels hacky.

The smart choice: Deploy on a fresh VPS where you control the environment from the start.

Local Docker vs Cloud VPS Comparison

Issue	Local Docker	Cloud VPS (Vultr)
Permissions	UID mismatch, chown needed	Clean slate, your user only
Volume mounts	Root ownership issues	Properly configured
Debug time	1-2 hours (chown, rebuild)	0 minutes (works immediately)
Security	Need root for fixes	Isolated, no root needed
Setup Time	Hours of debugging	2 minutes

Deploy on Vultr (H100/A100 Ready) (High Availability & Limited Time Promotion for new accounts)

Complete Working Example

Verified Docker Configuration

FROM node:18-alpine

# Install OpenClaw
RUN npm install -g openclaw

# Create non-root user with specific UID/GID
RUN addgroup -g 1000 node && \
    adduser -D -u 1000 -G node -h /home/node node

# Set up directory structure
WORKDIR /home/node
RUN mkdir -p /home/node/.openclaw && \
    chown -R node:node /home/node/.openclaw

# Switch to non-root user early
USER node

# Set environment
ENV OPENCLAW_CONFIG=/home/node/.openclaw/openclaw.json

CMD ["openclaw"]

docker-compose.yml

version: '3.8'

services:
  openclaw:
    build: .
    user: "1000:1000"  # Run as UID 1000
    volumes:
      - ./data:/home/node/.openclaw
    environment:
      - OPENCLAW_CONFIG=/home/node/.openclaw/openclaw.json
    restart: unless-stopped

Verify Permissions Work

# Start container
docker-compose up -d

# Enter container
docker-compose exec openclaw sh

# Check user
id
# Should show: uid=1000(node) gid=1000(node)

# Check directory
ls -la /home/node/.openclaw
# Should show: drwxr-xr-x node node ...

# Try writing
echo "test" > /home/node/.openclaw/test.txt
# Should work without EACCES

FAQ

Q: Why does Docker run as root by default?

A: Historical reasons. Root can do anything during build and runtime. Most Docker images still use root for simplicity. This causes permission issues when non-root processes (like Node running as `node`) try to write to root-owned files.

Q: I ran chown but still get EACCES?

A: Check the entire path. Each directory in the path must be writable. Use namei -d /home/node/.openclaw/openclaw.json to see permissions on each directory. Fix all of them with chown -R node:node /home/node.

Q: Can I just run Docker with --privileged flag?

A: You can, but it's a security risk. --privileged gives the container access to ALL host devices, which defeats Docker's isolation. Use non-root users instead — it's more secure and follows best practices.

Q: What's the difference between EACCES and EPERM?

A: EACCES = "Permission denied" — you don't have rights to access the file. EPERM = "Operation not permitted" — the operation itself is not allowed (often due to file attributes like immutable bit). Both are permission errors, but EPERM is usually more severe.

Q: Is rootless Docker worth the setup effort?

A: For production, yes. Rootless Docker runs containers without root privileges, which is more secure. You never have to worry about containers escaping with root access. The setup is a one-time effort that pays off in security.

Fix 'spawn npm ENOENT' in OpenClaw - Node/npm installation issues
Fix 'spawn EINVAL' on Windows - Windows permissions
Fix OpenClaw CUDA OOM Errors - VRAM optimization guide
Running OpenClaw with DeepSeek R1: Complete Guide - Setup and configuration

Bottom Line: Docker permission issues are a common pain.

Fix it with chown (temporary) or run as non-root user (permanent).

Deploy on Vultr (H100/A100 Ready) (High Availability & Limited Time Promotion for new accounts)

Still Stuck? Check Your Hardware

Sometimes the code is fine, but the GPU is simply refusing to cooperate. Before you waste another hour debugging, compare your specs against the Hardware Reality Table to see if you are fighting impossible physics.