814

Newbies never listen... (sh.itjust.works)

submitted 3 days ago by 0x4E4F@sh.itjust.works to c/linuxmemes@lemmy.world

109 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[-] lemmyng@lemmy.ca 54 points 3 days ago

Still not as bad as chmod -R 777.

[-] Dhs92@programming.dev 29 points 3 days ago

Once had a friend run sudo chmod -R 777 / on a (public) Minecraft server we were running back in highschool. It made me die a bit on the inside.

[-] rikudou@lemmings.world 24 points 3 days ago

Doesn't it break a lot of things? Half the stuff refuses to work when some specific files have too permissive chmod.

[-] Dhs92@programming.dev 17 points 3 days ago

Really only SSH and sudo broke. sudo would still work but you'd have to re-enter your password every time. It was a painful experience and I'm glad I know better now.

[-] AngryPancake@sh.itjust.works 8 points 3 days ago

Goodbye ssh access

[-] masterofn001@lemmy.ca 25 points 3 days ago

As a one time noob I may have done this once or more.

To get one thing working I borked everything.

Understanding permissions is pretty basic. But understanding permission requirements for system and user apps and their config and dirs can be a bit overwhelming at first.

Thinking a little change to make your life simpler will break something else doesn't always register immediately.

Shit, even recently, wondering why my SSH keys were being refused and realising that somehow i set my private keys world readable.

Thank god SSH checks file and dir permission.

[-] InverseParallax@lemmy.world 6 points 3 days ago

Jesus, every time I have to run glx or vaapi under a container I end up having to do this then cringe.

[-] possiblylinux127@lemmy.zip 1 points 2 days ago

You don't need to

[-] InverseParallax@lemmy.world 1 points 2 days ago

Nah, there's something broken, I think it's because group render under the container has a different GID than the container so the acl fails and you either sudo or chmod.

Lxc is still a little wobbly in places.

[-] possiblylinux127@lemmy.zip 3 points 2 days ago* (last edited 2 days ago)

I use podman and since it runs as my user it has exactly same same permissions as me. I just add my user to the proper group and it works.

Anyway for LXC you could just passthough a folder and then create a file. From there you can look at the file on the host to see who owns it. That will give you the needed information to set permissions correctly

[-] InverseParallax@lemmy.world 3 points 2 days ago

Ahh, I'm running priveleged containers, I wrote my own scripted framework for containers around lxc in mostly python.

Basically I fell head over heels in love with freebsd jails and wanted them on Linux, then started running x11 apps in them, it's my heroin.

Haven't used podman outside proper k8s for work, did proxmox for a bit, but it was just a webgui for the same thing.

There were a bunch of online bug reports about the /dev/dri issue, maybe there's a better solution now, but since this is my workstation I wasn't as worried about security.

[-] corsicanguppy@lemmy.ca 1 points 3 days ago

from the chmod or from the containers?

[-] InverseParallax@lemmy.world 1 points 2 days ago

From the chmod, I love running games and shit under containers.

this post was submitted on 30 Sep 2024

814 points (97.8% liked)

linuxmemes

20892 readers

566 users here now

I use Arch btw

Sister communities:

LemmyMemes: Memes
LemmyShitpost: Anything and everything goes.
RISA: Star Trek memes and shitposts

Community rules

Follow the site-wide rules and code of conduct
Be civil
Post Linux-related content
No recent reposts

Please report posts and comments that break these rules!

founded 1 year ago

MODERATORS

poopsmith@lemmy.world

zephyr@lemmy.world

rtxn@lemmy.world