Pierre Neidhardt <m...@ambrevar.xyz> writes:
> I've just "guix pull"ed and I get the following: > > --8<---------------cut here---------------start------------->8--- >> guix environment --container --ad-hoc coreutils shadow > # id > uid=0(ambrevar) gid=0(users) groups=0(users),65534(overflow) > # groupadd audio > groupadd: PAM: Critical error - immediate abort > # useradd foo > useradd: PAM: Critical error - immediate abort > --8<---------------cut here---------------end--------------->8--- > > Any idea where to go from here? I suppose /etc/pam.d/ also needs to be in the container. > Ricardo Wurmus <rek...@elephly.net> writes: > >> I agree. Defaulting to UID 0 is not good. (“conda” is an example of >> one application that has very different behaviour when it thinks it is >> running as root.) > > What about defaulting to 1000? It's rather common, so I guess that > would be anonymous enough and "just work". Would it make sense to map the current user’s UID into the container instead of using a fixed UID? -- Ricardo
