On production machines I rarely touch root space with containers.

incentive@mastodon.circlewithadot.net

On production machines I rarely touch root space with containers. I tend to keep as much in user as humanly possible in order to keep root mostly safe- even running a lot of systemd services as user.

I've noticed a lot of projects assume root being used (i.e. /srv) and expect root ownership, leading to a total permissions hellscape if you're from an opposite perspective.

My question is what causes a project to decide on root vs user?

#linux #sysadmin #docker