From mboxrd@z Thu Jan 1 00:00:00 1970 From: Florian Thevissen Subject: bug#34494: proot-based non-root setup: refusing to run with elevated privileges (UID 0) Date: Tue, 5 Mar 2019 19:57:42 +0100 Message-ID: <3ecb593e-49d1-e728-4a48-d4eaf9a675d2@florian-thevissen.de> References: <81415b97-6e02-33dc-a4da-b1b046d5a4e7@florian-thevissen.de> <87lg1unwje.fsf@gnu.org> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="------------D359429A0A6A4E876CC398CC" Return-path: Received: from eggs.gnu.org ([209.51.188.92]:34104) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1h1FHK-0005sx-V8 for bug-guix@gnu.org; Tue, 05 Mar 2019 13:59:03 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1h1FHJ-0002rf-TJ for bug-guix@gnu.org; Tue, 05 Mar 2019 13:59:02 -0500 Received: from debbugs.gnu.org ([209.51.188.43]:48142) by eggs.gnu.org with esmtps (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.71) (envelope-from ) id 1h1FHJ-0002rG-Mj for bug-guix@gnu.org; Tue, 05 Mar 2019 13:59:01 -0500 Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1h1FHJ-0004xb-J0 for bug-guix@gnu.org; Tue, 05 Mar 2019 13:59:01 -0500 Sender: "Debbugs-submit" Resent-Message-ID: Received: from eggs.gnu.org ([209.51.188.92]:33988) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1h1FGk-0005nh-8L for bug-Guix@gnu.org; Tue, 05 Mar 2019 13:58:27 -0500 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1h1FGj-0001cw-45 for bug-Guix@gnu.org; Tue, 05 Mar 2019 13:58:26 -0500 In-Reply-To: <87lg1unwje.fsf@gnu.org> Content-Language: en-US List-Id: Bug reports for GNU Guix List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-guix-bounces+gcggb-bug-guix=m.gmane.org@gnu.org Sender: "bug-Guix" To: Ludovic =?UTF-8?Q?Court=C3=A8s?= Cc: bug-Guix@gnu.org This is a multi-part message in MIME format. --------------D359429A0A6A4E876CC398CC Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Hi Ludovic, Not really answering your question, but would user namespaces be an option for you? If so, might be a simpler option. Thank you for the suggestion, this does look interesting. However, the original use-case of using guix in a non-root scenario is=20 no longer relevant to me: I was convincing enough to get guix=20 root-installed on all relevant machines on which I do not have root=20 access. So I can enjoy guix properly, now. However, I could very well imagine guix to be used on a per-user basis,=20 acting on some sub-directory of $HOME. Afterall, many (most?)=20 desktop-systems are used by a single user - or so I would argue=E2=80=A6 On the original topic - I recently learned that the mechanisms proot=20 employs might just not work on all systems. So the issue may not per-se=20 have been with guix, but with proot. I=E2=80=99m no expert on the subject= =20 though, and didn=E2=80=99t dig deeper yet. Best regards, Florian =E2=80=8B --------------D359429A0A6A4E876CC398CC Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: quoted-printable

Hi Ludovic,

Not really answering your question, but would user namespaces be an=C2=A0 option for you? If so, <https://lists.gnu.org/archive/html/guix-devel/2018-05/msg00139.html> might be a simpler option.

Thank you for the suggestion, this does look interesting.

However, the original use-case of using guix in a non-root scenario is no longer relevant to me: I was convincing enough to get guix root-installed on all relevant machines on which I do not have root access. So I can enjoy guix properly, now.

However, I could very well imagine guix to be used on a per-user basis, acting on some sub-directory of $HOME. Afterall, many (most?) desktop-systems are used by a single user - or so I would argue=E2= =80=A6

On the original topic - I recently learned that the mechanisms proot employs might just not work on all systems. So the issue may not per-se have been with guix, but with proot. I=E2=80=99m no expert on the subject though, and didn=E2=80=99t dig deeper yet.

Best regards,
Florian

=E2=80=8B

--------------D359429A0A6A4E876CC398CC--