Daniel J Walsh comments

Results 1534 comments of


                                            Daniel J Walsh

[v0.52.x][git cherry-pick 5c81adc] apparmor: fix parsing beta/alpha version

I don't see why not.

Running without a uid 0 : write to `/proc/sys/net/ipv4/ping_group_range`: Invalid argument

YOu can modify containers.conf to not set it.

Running without a uid 0 : write to `/proc/sys/net/ipv4/ping_group_range`: Invalid argument

Yes except set it to default systctls to []

Running without a uid 0 : write to `/proc/sys/net/ipv4/ping_group_range`: Invalid argument

@giuseppe PTAL

Running without a uid 0 : write to `/proc/sys/net/ipv4/ping_group_range`: Invalid argument

You can tall Podman to not set sysctls in this situation or modify containers.conf to not set it. This sysctl is just allowing the root procesess within the container to...

personality (PER_LINUX|ADDR_NO_RANDOMIZE) not allowed in seccomp.json profile

@giuseppe thoughts?

personality (PER_LINUX|ADDR_NO_RANDOMIZE) not allowed in seccomp.json profile

Should we make it easier to add a syscall to the seccomp json file with something like --syscall-add --syscall-drop (Matching --cap-add and --cap-drop) Making it easier for user rather then...

Misleading messages when login/logout with docker-credential-pass

Interested in opening a PR to make this work better?

Misleading messages when login/logout with docker-credential-pass

Podman will not use the dockerfile location by default. You need to either set DOCKER_HOST or use --auth-file to point at the config. podman login --auth-file ~/.docker/config.json foo.io

Misleading messages when login/logout with docker-credential-pass

Are you seeing the expected behaviour?