<div dir="ltr"><div class="gmail_default" style="font-size:small">Thanks to all. I am sorry I touched a heated point. For me using hard-virtualization for Linux apps is dementia. It should be kept only for Windows VMs.</div><div class="gmail_default" style="font-size:small">For me, the single point of using LXC is to be able to redeploy a complex app from host to host in a few minutes. I use one-host->one-Container. So what is the issue of giving all power to the containers?</div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, May 25, 2019 at 1:56 PM jjs - mainphrame <<a href="mailto:jjs@mainphrame.com">jjs@mainphrame.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr">Given the developers stance, perhaps a temporary workaround is in order, e.g. ssh-key root login to physical host e.g. "ssh <host> sysctl key=value..."<br><br>Jake</div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Mon, May 20, 2019 at 9:25 AM Saint Michael <<a href="mailto:venefax@gmail.com" target="_blank">venefax@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div dir="ltr"><div class="gmail_default" style="font-size:small"><div class="gmail_default">I am trying to use sysctl -p inside an LXC container and it says </div><div class="gmail_default">read only file system</div><div class="gmail_default">how do I give my container all possible rights?</div><div class="gmail_default">Right now I have</div><div class="gmail_default"><br></div><div class="gmail_default">lxc.mount.auto = cgroup:mixed</div><div class="gmail_default">lxc.tty.max = 10</div><div class="gmail_default">lxc.pty.max = 1024</div><div class="gmail_default">lxc.cgroup.devices.allow = c 1:3 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 1:5 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 5:1 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 5:0 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 4:0 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 4:1 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 1:9 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 1:8 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 136:* rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 5:2 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 254:0 rwm</div><div class="gmail_default">lxc.cgroup.devices.allow = c 10:137 rwm # loop-control</div><div class="gmail_default">lxc.cgroup.devices.allow = b 7:* rwm # loop*</div><div class="gmail_default">lxc.cgroup.devices.allow = c 10:229 rwm #fuse</div><div class="gmail_default">lxc.cgroup.devices.allow = c 10:200 rwm #docker</div><div class="gmail_default">#lxc.cgroup.memory.limit_in_bytes = 92536870910</div><div class="gmail_default">lxc.apparmor.profile= unconfined</div><div class="gmail_default">lxc.cgroup.devices.allow= a</div><div class="gmail_default">lxc.cap.drop=</div><div class="gmail_default">lxc.cgroup.devices.deny=</div><div class="gmail_default">#lxc.mount.auto= proc:rw sys:ro cgroup:ro</div><div class="gmail_default">lxc.autodev= 1</div><div class="gmail_default"><br></div><div class="gmail_default"><br></div></div></div></div>
_______________________________________________<br>
lxc-users mailing list<br>
<a href="mailto:lxc-users@lists.linuxcontainers.org" target="_blank">lxc-users@lists.linuxcontainers.org</a><br>
<a href="http://lists.linuxcontainers.org/listinfo/lxc-users" rel="noreferrer" target="_blank">http://lists.linuxcontainers.org/listinfo/lxc-users</a><br>
</blockquote></div>
_______________________________________________<br>
lxc-users mailing list<br>
<a href="mailto:lxc-users@lists.linuxcontainers.org" target="_blank">lxc-users@lists.linuxcontainers.org</a><br>
<a href="http://lists.linuxcontainers.org/listinfo/lxc-users" rel="noreferrer" target="_blank">http://lists.linuxcontainers.org/listinfo/lxc-users</a><br>
</blockquote></div>