From ArchWiki
Jump to navigation Jump to search

Rootless podman

Reading the Rootless podman, two things were not clear to me:

  1. Does the username, uid and gid set in the /etc/subuid and /etc/subgid have to exist and be valid values (e.g. should I create a podman user in my system), or doesn't matter what I set in those files ?
  2. After setting those values, is it still required to run podman as root (and the container will be run as the non-root user set in those files), or I should be able to run podman binary as non-root user?

-- Josephgbr (talk) 19:03, 1 July 2020 (UTC)

I have added some further explanation to the section. About the second point: This should probably be described in a seperate Usage section. Scrumplex (talk) 19:34, 1 July 2020 (UTC)
Thanks. I also improved the section content. Hopefully it is more clear for other users how to set it up. -- Josephgbr (talk) 15:19, 26 March 2021 (UTC)

Why should the image source URL be used

This page uses as as image source URL, but using solely the image name with/out its version seems to work. e.g. podman pull debian. So, why should the URL be used instead of just the name? -- Josephgbr (talk) 19:20, 1 July 2020 (UTC)

As far as I can tell all the official documentation, both on the website and on Redhat articles, they always use the format. I assume that whatever comes first in /etc/containers/registries.conf at will be searched, when not defining a registry, but this may change in the future, or by editing the configuration. Maybe add a notice about this somewhere? Scrumplex (talk) 19:34, 1 July 2020 (UTC)
The information on the Images section is very similar to Docker#Images. I'm starting to think that we should link Docker#Images and only add in this page what is different. Notice how Podman website tells its user to alias docker=podman. The image source should be verified and then listed in here only if different from docker. -- Josephgbr (talk) 20:31, 1 July 2020 (UTC)
Well to be honest I copied it over and just added the prefix to the images. I think it should generally be specified where to pull the image(s) from, so it might be worth just pointing to the Docker page with a Note like "Be sure to define to define the docker hub explicitly" Scrumplex (talk) 21:18, 1 July 2020 (UTC)

Subuid/subgid bigger ranges

Debian's default gid for the apt user is 65534, which is well outside of the current suggested range on this page, 4096. Fedora and other RH distros default to allocating 65536 ids per user starting at 100000. So, the lines in /etc/subuid and /etc/subgid would be USER:100000:65536. Should we suggest those ranges instead? Jdloft (talk) 05:21, 20 August 2020 (UTC)

It seems there is a reason for such range. Take a look at this scenario: -- Josephgbr (talk) 13:10, 26 March 2021 (UTC)
Only now I notice that we were using the range of 65536 ids already, but starting in 165536 instead of 100000. I applied your suggestion to keep more in tune with other guides I found in the webs. Thanks for bringing this up. -- Josephgbr (talk) 15:16, 26 March 2021 (UTC)