mqueue msg_max in rootless container
by Michael Ivanov
Hallo!
I'm trying to run my application in podman rootless container and I stumble
on following problem: my program needs /proc/sys/fs/mqueue/msg_max to be at
least 256, but in running container this value is just 10. When I try to
specify this parameter while running the image (--sysctl 'fs.mqueue.msg_max=256')
I get the following error:
Error: open /proc/sys/fs/mqueue/msg_max: Permission denied: OCI permission denied
and container is not created.
My host where container is being run has this parameter set to 256. How can I
expose current host setting for msg_max to my container?
Best regards,
--
\ / | |
(OvO) | Михаил Иванов |
(^^^) | |
\^/ | E-mail: ivans(a)isle.spb.ru |
^ ^ | |
10 months, 2 weeks
Rootless storage usage
by Михаил Иванов
Hallo,
I notice some disk space discrepancy when running rootless podman containers.
I use dedicated fs for podman storage mountrd to ~/.local/share/containers.
df and du show consistent used disk space:
island:named [master]> df -h ~/.local/share/containers
/dev/mapper/sys-containers 117G 84G 32G 73% ~/.local/share/containers
island:named [master]> sudo du -sh ~/.local/share/containers/storage/{vfs,volumes}
74G /home/ivans/.local/share/containers/storage/vfs
11G /home/ivans/.local/share/containers/storage/volumes
island:named [master]>
But space usage shown by podman system df is about 44% less than reported above:
island:named [master]> podman system df
TYPE TOTAL ACTIVE SIZE RECLAIMABLE
Images 32 5 39.49GB 25.96GB (66%)
Containers 7 7 1.85GB 0B (0%)
Local Volumes 2 2 10.83GB 0B (0%)
Volume space is practically same, it's vfs space (where as I understand images
and containers are located) that differs.
I also run buildah as same user, but buildah ls shows nothing.
I have ran podman system prune, but it reclaimed 0 bytes.
So is this extra space usage expected? Or is it sthing wrong with my storage?
Thanks and regards,
--
Michael Ivanov
1 year, 8 months
=?utf-8?q?=5BPodman=5D?=(Meta) Security warnings for podman mailing list
by Joost Molenaar
Hi all, for ~every message posted to this list, some email clients
display an error, in my case "This email has failed its domain's
authentication requirements. It may be spoofed or improperly
forwarded."
These are the authentication results for a recent message from the
list:
Authentication-Results: mailin008.protonmail.ch; arc=none smtp.remote-ip=8.43.85.227
Authentication-Results: mailin008.protonmail.ch; dkim=none
Authentication-Results: mailin008.protonmail.ch; spf=none smtp.mailfrom=lists.podman.io
Authentication-Results: mailin008.protonmail.ch; dmarc=fail (p=none dis=none) header.from=redhat.com
If I understand correctly, Mailman has an option[1] to change the
From: header in the email and add the original sender's name and
address to the Reply-To: header, which leads to a slightly worse user
experience, but is better for security because it reduces the number
of false positives we get exposed to.
So my question is, could we enable DMARC mitigation to reduce
warning fatigue?
Regards,
Joost Molenaar
[1]: https://docs.mailman3.org/projects/mailman/en/latest/src/mailman/handlers...
1 year, 9 months
Thursday December 15, 2022 Podman Community Cabal Meeting Canceled!
by Tom Sweeney
Hi All,
As we have not subjects as of yet, and I have had a number of
people tell me they won't be able to attend due to their holidays
starting early or other related holiday gatherings going on, I'm going
to cancel the Podman Community Cabal Meeting for Thursday December 15,
2022 at 11:00 a.m. EST (UTC-5).
The next Podman Community Cabal Meeting will be held on Thursday
January 19, 2023 at 11:00 a.m. EST (UTC-5). The next Podman Community
Meeting will be held on Tuesday February 7, 2023 at 11:00 a.m. EST
(UTC-5). As a reminder, the Cabal meetings are generally to talk about
Design questions, futures, and related items in regards to Podman. The
Community meeting is used for announcements, demos, and things of
interest not only for Podman, but anything container related.
If you have something that you'd like to present at either meeting
please let me know. Likewise, if you have seen something interesting in
the container world that you'd like to hear more about, please let me
know and I'll see if I can find someone to do a presentation on it.
I hope you and your families have a very safe and happy holiday
season. Happy New Year to you All!
Best Wishes,
t
1 year, 10 months
kratom.org - Reliable Kratom Resources About Kratom
by redddorsey1014@outlook.com
Founded in 2014, kratom.org (kratom.org) is an advocacy group that is dedicated to protecting the rights of consumers. Specifically, the organization aims to educate lawmakers, customers, vendors and growers about the benefits of kratom.
kratom.org has its own website, which features information on the science behind kratom. It also provides links to scientific studies and infographics. The website includes a pre-written letter that you can send to your congressperson. There is also a newsletter that you can subscribe to on kratom.org's site. You can also donate using PayPal, wire transfer or by check. kratom.org has been fighting against kratom bans in various parts of the country since it was founded, and the organization is attempting to win over some members of Congress.
kratom.org is run by a board of directors that consists of several government members and scientists. These individuals are responsible for ensuring that kratom.org complies with state and federal regulations. They are also responsible for ensuring that kratom.org remains compliant with the IRS. kratom.org is also a not-for-profit organization that is tax-exempt.
The organization is made up of a group of dedicated consumers, scientists, and lawmakers. The organization is dedicated to educating the public about kratom, and believes that education is the best way to change attitudes about kratom. It is also responsible for ensuring that consumers have access to safe and legal kratom products. The organization is also dedicated to combating misinformation about kratom.
kratom.org's mission is to protect consumers from unjustified bans and regulatory actions. The organization strives to increase consumer confidence in kratom, which is often lost in the political shuffle. It also wants to be a model for other countries to follow. It hopes to change the perceptions of the United States regarding kratom. It believes that consumers are often overlooked in the U.S. and that it is time that they were given their fair share of attention.
kratom.org believes that education is the best way to change the minds of the consumer, the law makers and the regulators. It also believes that educating consumers about kratom can help change attitudes about growers, vendors and manufacturers. The organization's website provides consumers with the science behind kratom, a list of current news and events about kratom, and a way to contact their congressional representatives.
kratom.org is made up of people who are dedicated to ensuring that consumers have access to kratom. It is a non-profit organization that depends on donations to fund its operations. The organization has been fighting against kratom bans and regulatory actions in various parts of the country since it was created. Its website features a list of current news and events about the plant, a way to contact your congressional representatives, and a newsletter that you can subscribe to.
kratom.org has been fighting against the FDA's inaccurate characterization of kratom. It also wants to help the FDA change course.
Website: https://kratom.org/
1 year, 10 months
Podman Community Meeting in 23 hours
by Tom Sweeney
Hi All!
The next Podman Community Meeting is happening in just over 23 hours on
Tuesday, December 6, 2022, 11:00 am EST(UTC-5). Agenda is here:
https://podman.io/community/meeting/agenda/, which includes a link to
the video room. We also have a topic to the replace the TBD on the
agenda, Ygal Blum will be talking about Embedding inside an AutoSD
Image, along with our MinIO topic/demo. Unfortunately GitHub is not
behaving at the moment, and I can't get the agenda page to update at the
moment.
Hope to see you there!
t
1 year, 10 months
(no subject)
by Lakshmi Mannuru
Hi Team,
I have a scenario where I need some help.
The application is having multiple containers running with podman run at
start up.
When firmware update is triggered, some of the files running on x
container, need to start tftp container. Can some suggest the steps to
start and stop tftp container from x container when Firmware update is
getting executed.
Thanks in advance for your help.
Thank you
1 year, 10 months