If I may ask: how practical is monitoring / administering rootless quadlets? I’m running rootless podman containers via systemd for home use, but splitting the single rootless user into multiple has proven to be quite the pain.
Comment on Should I keep shared or separate k8s clusters?
theroff@aussie.zone 5 weeks ago
At work we use separate clusters for various things. We built an Ansible collection to manage the lot so it’s not too much overhead.
For home use I skipped K8s and went to rootless Quadlet manifests. Each quadlet is in a separate non-root user with lingering enabled to reduce exposure from a container breakout.
anyhow2503@lemmy.world 5 weeks ago
johntash@eviltoast.org 5 weeks ago
I haven’t heard of Quadlet before this, thanks I’ll take a look at it.