[lxc-users] problem creating unprivileged containers ...
Yonsy Solis
yonsy.s.p at gmail.com
Sat Aug 1 04:24:35 UTC 2015
On vie, jul 31, 2015 at 6:56 PM, Robert Pendell
<shinji at elite-systems.org> wrote:
> I actually know this issue since I hit into it with my own
> installation.
>
> It affects lxc-create and lxc-attach.
>
> The issue is caused by pam_tmpdir. The purpose of the pam module is
> to create a secure per-user tmpdir. The directory perms end up being
> 0700 which denies everyone except for the user (and root).
<big snip>
> Workaround 1: Remove pam_tmpdir although it has its uses. For Ubuntu
> the package is libpam-tmpdir. It is pulled in as a recommend to tmux
> usually.
Exactly my problem. This laptop did get with Ubuntu 14.04 lts but with
tmux 2.0 backported from a PPA, that come with libpam-tmpdir package
like a recommended dependence. I did removed the libpam-tmpdir package
in my case, i am the only user in this laptop. I will have this in
account when we deploy lxc in servers. Weird problem. the problem was
related with
<snip>
> Fix: Any way to prevent lxc-create and lxc-attach from inheriting
> TMPDIR?
>
> I'm not sure if it is a bug to inherit TMPDIR when you do
> lxc-attach....
this can be discused by more lxc developers. Maybe can give problems
with lxd too. But at least my problem was solved, thanks!
Yonsy Solis
More information about the lxc-users
mailing list