Exercise 6.6: Domain Review
- After finding the errors, log into the container and find the proper id of the nginx user.
Did anyone figure out the proper ID of the nginx user?
Comments
-
any solution to this? It seems one should run
id nginxto get the proper id nginx is running under. But you can't execute commands in a container which fails to start in the first placeme@cp1:~/k8s/lfs$ k exec securityreview -- id nginx error: unable to upgrade connection: container not found ("webguy")or should change the pod command to
id nginx, run it once to get the pid, kill the pod, fix the yaml and re-apply?0 -
But to answer your question, you need to issue the "id nginx" command... but cannot reach the nginx container in the pod... b/c it isn't started.
... you can add busybox
... you can look in secondappOn my first cycle of RTM (Read The Manual) I did not go past the "ps aux". I suggest you read further down that "extra" reading page. You will find the "id" command... though not in that format (if I recall)
0 -
Check out this answer on stack overflow
0 -
@headkaze
That is quite some solution and I see what is happening. But to me, it seems rather unrealistic that with the knowledge of the course so far one could come up with such a solution. I think the course should focus on kubernetes, not on nginx specialities. Or am I too narrow-minded then?The only solution I can come up with is to remove both securityContext parts. Then the container runs normally but without any security context. I failed to set the security context with the 101 ID.
It would be nice if the chapter gave some information about the magical Linux user ID numbers. I found https://www.baeldung.com/linux/user-ids-reserved-values and now I know some more.
0
Categories
- All Categories
- 177 LFX Mentorship
- 177 LFX Mentorship: Linux Kernel
- 754 Linux Foundation IT Professional Programs
- 374 Cloud Engineer IT Professional Program
- 170 Advanced Cloud Engineer IT Professional Program
- 74 DevOps IT Professional Program - Discontinued
- 5 DevOps & GitOps IT Professional Program
- 100 Cloud Native Developer IT Professional Program
- 7.6K Training Courses & Learning Paths
- 2 AI & ML Training
- 1 Blockchain & Decentralized Identity Training
- 5 Cloud & Containers Training
- 1 Cybersecurity Training
- 2 DevOps & Site-Reliability Training
- 1 Linux Kernel Development Training
- 1 Networking Training
- 2 Open Source Best Practice Training
- 2 System Administration Training
- 1 System Engineering Training
- 1 Web & Application Development Training
- 794 Hardware
- 202 Drivers
- 68 I/O Devices
- 37 Monitors
- 95 Multimedia
- 173 Networking
- 91 Printers & Scanners
- 89 Storage
- 769 Linux Distributions
- 81 Debian
- 68 Fedora
- 22 Linux Mint
- 13 Mageia
- 24 openSUSE
- 150 Red Hat Enterprise
- 31 Slackware
- 13 SUSE Enterprise
- 356 Ubuntu
- 465 Linux System Administration
- 31 Cloud Computing
- 73 Command Line/Scripting
- Github systems admin projects
- 98 Linux Security
- 78 Network Management
- 101 System Management
- 46 Web Management
- 112 Mobile Computing
- 20 Android
- 77 Development
- 1.2K New to Linux
- 1K Getting Started with Linux
- 393 Off Topic
- 121 Introductions
- 182 Small Talk
- 29 Study Material
- 977 Programming and Development
- 310 Kernel Development
- 649 Software Development
- 990 Software
- 382 Applications
- 182 Command Line
- 5 Compiling/Installing
- 68 Games
- 317 Installation
- Archived
- 2 LFD140 Class Forum
- 1.4K LFS258 Class Forum
Upcoming Training
-
August 20, 2018
Kubernetes Administration (LFS458)
-
August 20, 2018
Linux System Administration (LFS301)
-
August 27, 2018
Open Source Virtualization (LFS462)
-
August 27, 2018
Linux Kernel Debugging and Security (LFD440)