Why podman

Containerisierung möglichst nah am Kernel

Quellen zur Auswahl

https://developer.ibm.com/articles/templating-and-podman-openshift/

https://docs.oracle.com/en/operating-systems/oracle-linux/podman/podman-Preface.html#podman-preface

https://medium.com/devops-dudes/how-to-setup-root-less-podman-containers-efd109fa4e0d

Suse MicroOS Sun Nov 6 00:00:03 2022, transactional-server baremetal auf MacBook8.1 16GB Ram und 240G btrfs

oh-my-zsh

the better shell with useful plugins

transactional-update pkg install git zsh curl nfs-utils snapper xauth socat bcm43xx-firmware nano mlocate btop iftop iperf && reboot
sh -c "$(curl -fsSL https://raw.githubusercontent.com/robbyrussell/oh-my-zsh/master/tools/install.sh)"
git clone https://github.com/zsh-users/zsh-autosuggestions ${ZSH_CUSTOM:-~/.oh-my-zsh/custom}/plugins/zsh-autosuggestions && git clone https://github.com/zsh-users/zsh-syntax-highlighting.git ${ZSH_CUSTOM:-~/.oh-my-zsh/custom}/plugins/zsh-syntax-highlighting

configure .zshrc

plugins=(git zsh-syntax-highlighting zsh-autosuggestions)

MicroOS

podman onboard

podman info

Cockpit-WS

webfrontend zur Maschine, watt willste meer https://documentation.suse.com/sle-micro/5.3/pdf/article-cockpit-slemicro_color_en.pdf

zypper search cockpit
transactional-update pkg install cockpit-bridge cockpit-system cockpit-networkmanager cockpit-packagekit cockpit-storaged && reboot
podman container runlabel install registry.opensuse.org/suse/alp/workloads/tumbleweed_containerfiles/suse/alp/workloads/cockpit-ws:latest
systemctl enable --now cockpit.service
echo 'PasswordAuthentication yes' | tee /etc/ssh/sshd_config.d/02-enable-passwords.conf
useradd kaiilja
passwd kaiilja
usermod -a -G wheel kaiilja

configure /etc/containers/registries.conf

unqualified-search-registries = ["registry.opensuse.org", "docker.io", "quay.io", "alp.artific.ial:5000"]

!! root is not allowed log into cockpit-ws

root = epos15

echo 'PasswordAuthentication yes' | tee /etc/ssh/sshd_config.d/02-enable-passwords.conf systemctl try-restart sshd Run the Cockpit web service with a privileged container (as root): podman container runlabel --name cockpit-ws RUN docker.io/cockpit/ws

artific.ial - a awesome book