this post was submitted on 04 Jul 2024
10 points (91.7% liked)

Linux

48624 readers
1671 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
 

Does anyone here use LXD/Incus? What do you do if you want to find the IP address of an instance, but incus list does not give you one? I am not sure what would be stopping one from being issued since that is how I have found that information before.

I am just a student trying to learn about them and do stuff. I often just find the IP of the container and then ssh in as that feels natural, but perhaps I am cutting against the grain here.

you are viewing a single comment's thread
view the rest of the comments
[–] InternetCitizen2 2 points 5 months ago (5 children)

But that then leaves me as root, is there a way to just have a normal user? Or is that also not really intended?

[–] TCB13 4 points 5 months ago* (last edited 5 months ago) (4 children)

Well, it's a container, in most situations you would be running as root because the root inside the container is an unprivileged user outside it. So in effect the root inside the container will only be able to act as root inside that container and nowhere else. Most people simply do it that way and don't bother with it.

If you really want there are ways to specify the user... but again there's little to no point there.

lxc exec container-name --user 1000 bash 
lxc exec container-name -- su --shell /bin/bash --login user-name

For your convenience you can alias that in your host's ~/.bashrc with something like:

lxcbash() { lxc exec "$1" -- sudo --login --user "$2"; }

And then run like:

lxcbash container-name user-name
[–] InternetCitizen2 3 points 5 months ago (3 children)

I guess that does make sense. Part of what I had in mind was having different instance for different projects. I guess in my mind it gives me a reason to have and practice multiple as well as feeling cleaner (keeping compiler and stuff off host). I will try out your advice when I get home. Thank you so much!

[–] JohnnySledge 2 points 5 months ago (1 children)

I use LXD (too lazy to move to Incus at the moment) for this exact purpose. It’s definitely nice having a greater degree of isolation between the various projects I’m working on — especially when working with confidential information from clients. Depending on what you’re looking to do there are simpler ways to manage isolation between projects like chroot and nspawn or Nix’s environments. Then again by using LXD/Incus you get that plus lots of other useful tools baked in.

Regarding not getting an IP address have you checked your base configuration to see if dhcp has been configured for the bridge? If that isn’t the issue then all I can think of is that you somehow deleted the interface and should check the container config.

That said the commands provided above are how I usually access the container command line. For coding I use code-server to put VS Code in a browser. I’m sure there are better options and look forward to the suggestions.

Keep going and learning!

[–] TCB13 2 points 5 months ago (1 children)

You can run full GUI apps inside LXC containers and have X11 deal with the rest. Guides here and here.

[–] JohnnySledge 2 points 5 months ago

Thanks! I’ve come across many of Simos’ posts while getting up to speed on LXD. I had previously ended up settling on using the forgotten xdmcp to establish and manage the connections. My next go around will probably use a different approach that is more secure.

My use case for code-server is that I can then access the IDE from any computer allowing me greater flexibility of the device that I code on.

load more comments (1 replies)
load more comments (1 replies)
load more comments (1 replies)