{"id":2878,"date":"2023-10-09T10:47:11","date_gmt":"2023-10-09T10:47:11","guid":{"rendered":"https:\/\/voodoo.business\/?p=2878"},"modified":"2023-10-09T10:50:23","modified_gmt":"2023-10-09T10:50:23","slug":"step-by-step-unprivileged-containers-on-debian-bookworm","status":"publish","type":"post","link":"https:\/\/www.voodoo.business\/blog\/2023\/10\/09\/step-by-step-unprivileged-containers-on-debian-bookworm\/","title":{"rendered":"Step by step Unprivileged containers on Debian Bookworm"},"content":{"rendered":"\n<p>The full version of this, with an explanation of everything is <a href=\"\/2023\/09\/20\/unprivileged-containers-made-simple-on-debian-12-bookworm\/\">here<\/a>, this one is written for copy-paste and speed.<\/p>\n\n\n\n<p>This version is meant to create unprivileged LXC containers <strong>owned by root<\/strong> subordinates, which in my opinion provides the best balance of security and flexibility.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Install Debian 12 (bookworm) on a computer or virtual machine or what have you.<\/li>\n\n\n\n<li>I personally enable root access under SSH, so all the commands you see here are run as root, you may use another user with sudo if you wish, but i execute as root<\/li>\n\n\n\n<li>Execute the following to install LXC (I am installing LXC and KVM) but you might want to remove KVM<\/li>\n<\/ul>\n\n\n\n<pre class=\"wp-block-preformatted\">apt-get update\n\napt-get install bridge-utils lxc libvirt-clients libvirt-daemon-system debootstrap qemu-kvm bridge-utils virtinst nmap resolvconf iotop net-tools<\/pre>\n\n\n\n<p><\/p>\n\n\n\n<p>Most installations will have 2 users, root and another username you chose while installing the operating system, <\/p>\n\n\n\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The full version of this, with an explanation of everything is here, this one is written for copy-paste and speed. This version is meant to create unprivileged LXC containers owned by root subordinates, which in my opinion provides the best balance of security and flexibility. apt-get update apt-get install bridge-utils lxc libvirt-clients libvirt-daemon-system debootstrap qemu-kvm [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,173,139],"tags":[],"class_list":["post-2878","post","type-post","status-publish","format-standard","hentry","category-linux","category-lxc","category-virtualization-linux"],"_links":{"self":[{"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/posts\/2878","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/comments?post=2878"}],"version-history":[{"count":4,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/posts\/2878\/revisions"}],"predecessor-version":[{"id":2885,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/posts\/2878\/revisions\/2885"}],"wp:attachment":[{"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/media?parent=2878"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/categories?post=2878"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.voodoo.business\/blog\/wp-json\/wp\/v2\/tags?post=2878"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}