mastouille.fr @admin

0 message0 participant0 message aujourd’hui

A répondu dans un fil de discussion

**Marcus Rohrmoser** @mro@digitalcourage.social · 7 juil. *

Marcus Rohrmoser @mro@digitalcourage.social

Hi @lproven,
nice! I'm using several #CGIs #RFC3875 for personal (scaled to n=1) web applications - be it (ephemeral) #QRCode https://qr.mro.name, #GeoHash https://mro.name/g/u28br conversion, a #nodb guestbook https://codeberg.org/jugendhacktlab.qdrei.info/gaestebuch, a personal #ActivityPub server @aSeppoToTry or the hacky video-office-hours reservation system https://mro.name/sprechstunde. Once there even was a #HaveIBeenPwnd proof of concept https://blog.mro.name/2022/08/pwned-diy.
They're #rootless deployments running on #shared #hosting (except qrcodes and HaveIBeenPwnd).

qr.mro.nameQR Code Generator

**Ludovic Courtès** @civodul@toot.aquilenet.fr · 30 juin

30 juin

Ludovic Courtès @civodul@toot.aquilenet.fr

Instead of disabling unprivileged user namespaces plain and simple, Ubuntu since 24.04 restricts them with an AppArmor profile, which is known to be insufficient:
https://seclists.org/oss-sec/2025/q1/253

Yet, people writing code relying on unprivileged user namespaces have to deal with Ubuntu specifics where things don’t behave as documented. Latest example:
https://codeberg.org/guix/guix/issues/679#issuecomment-5659997

How do folks deal with it?

seclists.orgoss-sec: Three bypasses of Ubuntu's unprivileged user namespace restrictions

#Linux #containers #rootless

**Luca Di Maio** @89luca89@fosstodon.org · 9 févr.

9 févr.

Luca Di Maio @89luca89@fosstodon.org

Hi! In case you missed, my #FOSDEM talk about creating a #rootless #container manager from scratch is available!

We'll talk about the basic principles to build your own container manager, using #lilipod as an example project:

https://fosdem.org/2025/schedule/event/fosdem-2025-5022-implementing-a-rootless-container-manager-from-scratch/

fosdem.orgFOSDEM 2025 - Implementing a rootless container manager from scratch

#opensource #linux #distrobox

**Jan Wildeboer** @jwildeboer@social.wildeboer.net · 4 août 2024 *

4 août 2024 *

Jan Wildeboer @jwildeboer@social.wildeboer.net

Finally :) My little #RHEL 9 (Red Hat Enterprise Linux) server now runs #Forgejo version 8.0 as #rootless container behind nginx and it can happily execute workflows with the forgejo-runner running as a *user* systemd service. #rootless FTW :)

Screenshot of the forgejo admin page, showing the runner for workflows is waiting for jobs to execute

The not yet perfect but working user systemd service file to automagically start the forgejo runner after reboot as a user service.

**natxolg** @natxolg@nobigtech.es · 6 mai 2024 *

6 mai 2024 *

natxolg @natxolg@nobigtech.es

Bueno, ya he eliminado todas las entradas del DNS con subdominios y solo he dejado dos wildcard, uno para lo expuesto y otro para lo interno

Para lo expuesto lo paso por npm (no me gusta que no tenga waf o mas opciones de seguridad), y para lo interno traefik tirando de las labels de los contendores

Por el camino he borrado todos los tunnels de cloudflare.

Siguiente paso, crear todos los usuarios y montar contenedores por tematica en usuarios aislados

#selfhosted #rootless #podman

**GNU/Linux.ch** @gnulinux@social.anoxinon.de · 6 avr. 2023

6 avr. 2023

GNU/Linux.ch @gnulinux@social.anoxinon.de

Rootless Podman

Mit etwas Vorbereitung ist es möglich Podman Container als regulärer Benutzer auszuführen.

#Podman #Rootless #cgroups #Container #Linux

https://gnulinux.ch/rootless-podman

GNU/Linux.chRootless PodmanMit etwas Vorbereitung ist es möglich Podman Container als regulärer Benutzer auszuführen.

**David Palk#RejoinEU** @Palky55@mas.to · 10 déc. 2022 *

**Aral Balkan** @aral@mastodon.ar.al · 31 août 2022

31 août 2022

Aral Balkan @aral@mastodon.ar.al

A little tip if you’re running in a rootless container on an immutable OS (like Fedora Silverblue) and have a tool (say Helix Editor – command: hx) installed in your “user” account but want to do, e.g.,

sudo hx /etc/hostname

Which would result in:

sudo: hx: command not found

Instead do:

(Fish) > sudo (which hx) /etc/hostname
(Bash) > sudo `which hx` /etc/hostname

Enjoy! :)

#FedoraSilverblue #sudo #container

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#rootless