nico198x

@nico198x@europe.pub

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨14⁩ ⁨hours⁩ ago⁩:
thanks, very helpful! your comment is definitely relevant, and i hope this topic will help others in the future who may be confused about best practice w/ MicroOS.

for what it’s worth, i did end up running Rootful!
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
that’s great, thanks for sharing! yeah, i love to hear their thoughts on this, since i’m new to ALL of this, immutables and containers. so i want to hear what their design intention is.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
yeah, i did try that, but that part failed for some reason. the rest of the Ignition file was ok.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
fantastic, thank you!

yeah, when they said it was “ready for podman” i, uh, expected a little more preconfig. XD

as an aside, re: point 3, port forwarding won’t work in firewalld? like , 80->8080, then 8080->container?
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
it does, thanks! i’m mostly really surprised that MicroOS hasn’t prepared all of this ahead of time for something that’s supposed to be a “ready for podman containers” install.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
not at this time, thank you. it’s more about confirming how MicroOS is functioning with a fresh install and where i need to head from there for rootless functionality. why this isn’t the default setup, i don’t know.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
i’m definitely root, which is the sole default user on MicroOS for login, bash, etc.

it mostly strikes me as odd that MicroOS for containers would not have me setup a non-root user at install. trying to do it after install necessitates some hoop jumping to get podman to work correctly, which is making me wonder if MicroOS is really worth it at that point if it’s not ready to go after install.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
thank you for confirming my suspicion. i know one CAN give it that power, but i understand that it’s not the default.

ultimately, this is a question first about the MicroOS setup, and second podman functionality.
⁨Comment⁩ on ⁨MicroOS: Rootless podman?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
i’ve been ass-deep in doc and guides for days, mate. can you just answer the question if you know the answer?

rootless podman should not be able to bind to port 80, for example. but i CAN do this on MicroOS. which is making me think that it’s running rootful. and if that’s happening because i’m working under the sole root user in MicroOS.
MicroOS: Rootless podman?
Submitted ⁨⁨1⁩ ⁨day⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨21⁩ ⁨comments⁩