From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Thompson, David" Subject: Re: Environment containers Date: Mon, 26 Oct 2015 10:38:20 -0400 Message-ID: References: <87y4epsnjs.fsf@T420.taylan> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Return-path: Received: from eggs.gnu.org ([2001:4830:134:3::10]:47103) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Zqiun-0001lB-4T for guix-devel@gnu.org; Mon, 26 Oct 2015 10:38:25 -0400 Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1Zqiuj-0005Rt-70 for guix-devel@gnu.org; Mon, 26 Oct 2015 10:38:25 -0400 Received: from mail-yk0-x22d.google.com ([2607:f8b0:4002:c07::22d]:32823) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1Zqiuj-0005Ro-20 for guix-devel@gnu.org; Mon, 26 Oct 2015 10:38:21 -0400 Received: by ykft191 with SMTP id t191so3059719ykf.0 for ; Mon, 26 Oct 2015 07:38:20 -0700 (PDT) In-Reply-To: <87y4epsnjs.fsf@T420.taylan> List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org Sender: guix-devel-bounces+gcggd-guix-devel=m.gmane.org@gnu.org To: =?UTF-8?B?VGF5bGFuIFVscmljaCBCYXnEsXJsxLEvS2FtbWVy?= Cc: guix-devel On Mon, Oct 26, 2015 at 10:37 AM, Taylan Ulrich Bay=C4=B1rl=C4=B1/Kammer wrote: > Also, for Debian 8 users and maybe others, this might help: > > sudo sysctl -w kernel.unprivileged_userns_clone=3D1 Yes, user namespaces are a must-have for this to work. I will prepare patches that mention this in the manual and add a test to 'guix environment' that can detect if user namespaces are unavailable and display a more helpful error message. Thanks for bring the UX issues to my attention! - Dave