Root в контейнере — это root на хосте? Разбираю особенности прав доступов в контейнерах Docker/Podman

Если назначить файлу владельца root на хосте — будет ли это тот же самый root внутри контейнера? Если на хосте существует пользователь gtosss — можно ли переключиться на него внутри контейнера и получить доступ к файлу? Если создать пользователя gtosss внутри контейнера и выдать ему права на файл — сможет ли хост обратиться к этому файлу под таким же пользователем? Большинство разработчиков знают, что контейнеры изолируют процессы. Но мало кто задумывается о том, что происходит с правами, когда например директория с хоста монтируется внутрь контейнера через volume (bind mount). Разобрал три конкретных сценария на Ubuntu с Docker и Fedora с Podman: как UID/GID влияют на доступ к файлам, почему root в контейнере может быть root на хосте и что с этим делает user namespace. Эксперименты, cli и доступные объяснения.

https://habr.com/ru/articles/1040300/

#Docker #Podman #Linux #UID #GID #user_namespace #bind_mount #SELinux #rootless #контейнеры

Linux-Befehl id: So prüfst du Benutzer- und Gruppen-IDs

https://andreas-moor.de/linux-befehl-id-so-pruefst-du-benutzer-und-gruppen-ids/

Linux Users, Groups & Tuned Explained: Don’t Break Your System!

https://www.youtube.com/watch?v=N7VgIHE2Y0Y

#opensuseleap #opensusetumbleweed #leap #tumbleweed #microos #suse #Linux #openSUSE #RHEL #REDHAT #Ubuntu #LinuxSecurity #Sysadmin #DevOps #Sudo #Tuned #Performance #CFS #Nice #Renice #UID #GID

Godot 4.5 was recently released. This release now supports drag and drop resources in scripts to preload by UID instead of by path.

Scripts can now take advantage of preloading resources via their UID. You just have to drop the resource while holding Ctrl (Cmd on macOS).

By using UIDs instead of paths for preloading, your scripts will be more resilient, wherever the resources you are preloading are in your project.

#Godot #UID #resources #scripts

Randomly thinking of the scene in the movie Stree where the townsfolk gather for a meeting. A man asks how the malicious spirit knows the names of the persons she strips naked and abducts. Rudra, the librarian, replies, "Sab ka Aadhaar linked hai uske paas." ("She has obtained everyone's #Aadhaar information", a reference to India's national biometric digital ID.) That joke worked at so many levels.

#Stree #UID.

Unpopular feedback about #Pixelfed. I really want to love PF, but...

1. I need simple drag n drop multi upload panel. Having to navigate to images before I actually create a post is REALLY offputting
2. Why cant I create a new post FIRST - before I publish, like all other socmed?
3. Why are img thmbs so small when creating the post?
4. Why cant I multi-upload images?
3. Why are stories and collections prioritised over simple UX improvements?

Please dont shout at me.

#ux #uid

#linux
#support
#help
#question
#systemd
#cgroup
#root
#uid

When su - error "Failed to connect to bus no medium found"

Investigated causes based on https://njroute22.com/failed-to-connect-to-bus-no-medium-found

Image1: $ systemctl status dbus. "CGroup" led me to systemd control groups.

Image2: $ systemd-cgls. From entry user-1234.slice ONLY configurations for originally created host user (i.e., ID 1234 user in sudoers), BUT NO ENTRY for root (i.e., user-0)

Q: Can root be made a member of systemd control group like user-1234 is?

Lets talk about user experience going down the toilet. I tried to find a product Id saved to a list on Amzn. But infinite scroll meant I had to go through loads of other stuff before I might see it. I gave up. Same happened on eBy. Tried to find an artist FB page post Id saved. Infinite scroll again. No search. No static list. No pagination. Why has it all become so bad? Ditch infinite bloat and provide actual user task functionality.

#userexperience #ux #design #uid