opensource/podman
1
0
Fork 0
mirror of https://github.com/containers/podman.git synced 2025-06-22 01:48:54 +08:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #4003 from TomSweeneyRedHat/dev/tsweeney/rootlessup2

Browse Source 
Touch up some bad grammar in rootless doc
This commit is contained in:
OpenShift Merge Robot
2019-09-12 15:39:45 +02:00
committed by GitHub
parent 57e093b3ae b1e36204b3
commit afa3d11381
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
rootless.md
View File

@ -6,14 +6,14 @@ Contributors are more than welcomed to help with this work. If you decide to ca
* Podman can not create containers that bind to ports < 1024. * Podman can not create containers that bind to ports < 1024.
* The kernel does not allow processes without CAP_NET_BIND_SERVICE to bind to low ports. * The kernel does not allow processes without CAP_NET_BIND_SERVICE to bind to low ports.
* How To documentation is in patchy at best. * How To documentation is patchy at best.
* If /etc/subuid and /etc/subgid are not setup for a user, then podman commands * If /etc/subuid and /etc/subgid are not setup for a user, then podman commands
can easily fail can easily fail
* This can be a big issue on machines using Network Based Password information (FreeIPA, Active Directory, LDAP) * This can be a big issue on machines using Network Based Password information (FreeIPA, Active Directory, LDAP)
* We are working to get support for NSSWITCH on the /etc/subuid and /etc/subgid files. * We are working to get support for NSSWITCH on the /etc/subuid and /etc/subgid files.
* No cgroup V1 Support * No cgroup V1 Support
* cgroup V1 does not safely support cgroup delegation. * cgroup V1 does not safely support cgroup delegation.
* cgroup V2 is available on Fedora 29 and later and other Linux distributions. * However, cgroup V2 provides cgroup delegation and is available on Fedora starting with version 29 and other Linux distributions.
* Can not share container images with CRI-O or other users * Can not share container images with CRI-O or other users
* Difficult to use additional stores for sharing content * Difficult to use additional stores for sharing content
* Does not work on NFS or parallel filesystem homedirs (e.g. [GPFS](https://www.ibm.com/support/knowledgecenter/en/SSFKCN/gpfs_welcome.html)) * Does not work on NFS or parallel filesystem homedirs (e.g. [GPFS](https://www.ibm.com/support/knowledgecenter/en/SSFKCN/gpfs_welcome.html))