Timeline for Cannot start unprivileged LXC containers on Debian 11 Bullseye
Current License: CC BY-SA 4.0
4 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Oct 28, 2022 at 16:53 | comment | added | Abdull | Regarding setfacl --modify user:100000:x . .local .local/share: 100000 must be adapted to the actual "numerical subordinate user ID" of the lxc user, e.g. for what is asked in the question (165536): setfacl --modify user:165536:x /home/lxcuser /home/lxcuser/.local /home/lxcuser/.local/share ... or automated: setfacl --modify user:$(grep lxcuser /etc/subuid | cut -d : -f 2):x $(eval echo ~lxcuser) $(eval echo ~lxcuser)/.local $(eval echo ~lxcuser)/.local/share | |
| Jun 26, 2021 at 20:11 | comment | added | Krackout | Great answer, the unprivileged containers work on Debian 11! I used lxc-unpriv-start -n Name but I got a very detailed error message, pointing me to run sudo loginctl enable-linger lxcuser first. Apparently this is needed because I don't log in as lxcuser, I su to it. | |
| Jun 26, 2021 at 20:06 | vote | accept | Krackout | ||
| Jun 26, 2021 at 17:53 | history | answered | A.B | CC BY-SA 4.0 |