Getting filesystem quotas work inside of a LXC unprivileged container is relatively a big problem, because linux kernel and LXC currently play against us (= they do not support this yet). But, workaround exists !
Quick how-to for registering and unregistering partitions on LVM logical volume (yes, event that is possible ;).
As always with Oracle its pretty ‘easy‘ and ‘straightforward‘ – you have to convert the high_value to XML and then extract it using XPATH (omg!). Let me guess, it would cost a fortune to provide native function/view that could do that…
In PostgreSQL it’s quite easy to restrict access for user to some tables:
- create restrictive view
- grant usage on view schema
- grant select on view to restricted user
Really easy. And it’s not working when the restrictive view, is selecting from another view that is using function(s)!
I encountered this problem again, so let’s write it down to avoid googling it.
PowerDNS fails to start with
pdns.service: Failed at step ADDRESS_FAMILIES spawning /usr/sbin/pdns_server: Invalid argument
- edit /lib/systemd/system/pdns.service
- comment out RestrictAddressFamilies
- comment out ProtectSystem=full
- possibly kill systemd-resolved
- systemctl daemon-reload
- ask yourself again, why are you using debian with systemd on server ? And why the hell it is starting services I’ve never configured to start ? Isn’t it time to switch to windows ? It seems more predictable to me…