Only is a user was changing passwords in a container, I would guess, so
almost never going to happen.
On 02/12/2016 02:58 PM, Muayyad AlSadi wrote:
> does a container need to decompress that file at all?
>
>
>
>
> On Fri, Feb 12, 2016 at 9:30 PM, Matthew Miller
> mailto:mat...@fedoraproject.org>>
does a container need to decompress that file at all?
On Fri, Feb 12, 2016 at 9:30 PM, Matthew Miller
wrote:
> On Thu, Feb 11, 2016 at 09:21:27AM -0500, Daniel J Walsh wrote:
> > > Compress cracklib
> > > gzip -9 $OSROOT/usr/share/cracklib/pw_dict.pwd
> > Why isn't this the default?
>
> https
On Thu, Feb 11, 2016 at 09:21:27AM -0500, Daniel J Walsh wrote:
> > Compress cracklib
> > gzip -9 $OSROOT/usr/share/cracklib/pw_dict.pwd
> Why isn't this the default?
https://bugzilla.redhat.com/show_bug.cgi?id=1004896
"Impossible due to terrible performance impact."
--
Matthew Miller
Fedora
On Thu, Feb 11, 2016, at 05:00 PM, Clayton Coleman wrote:
>
> I really want to look at making this a first class build path in OpenShift -
> it has a ton of advantages for builds of base images, and enables admins to
> slice and dice their toolchains. The question that has held it up so far is
I actually believe that s2i and Colins concept of building images as non
root have a great potential synergy. The biggest fear I have right now
from a security point of view is allowing users to upload random
dockerfiles and allowing them to build.
On 02/11/2016 05:00 PM, Clayton Coleman wrote:
I really want to look at making this a first class build path in OpenShift
- it has a ton of advantages for builds of base images, and enables admins
to slice and dice their toolchains. The question that has held it up so
far is what API surface does it need - maybe make s2i capable of leveraging
On Thu, Feb 11, 2016, at 05:08 AM, Daniel Riek wrote:
>
> * Enable mounting containers as volumes (unless I am mistaken, right
> now we can only mount host directories as volumes? Might be wrong)
This is: https://github.com/docker/docker/issues/7115
The thing that gets really messy is, sure you
On Wed, Feb 10, 2016, at 05:13 PM, Josh Berkus wrote:
> First, thanks for doing this! It really shows a lot.
Yep, nice work Courtney!
> I'd be really
> curious as to what's in the remaining 144MB, given that Alpine and
> BusyBox can get away with a userspace which is 25% of that size.
Ther
On Thu, Feb 11, 2016 at 3:13 PM, Colin Walters wrote:
> "rpm-ostree container" is a *lot* faster and has the advantage
> of understanding when a container needs to be updated.
I saw Colin's demo at DevConf.cz, and I like this architecture the
best. It makes the most amount of sense, and knowing w
On Thu, Feb 11, 2016, at 02:25 PM, Daniel Riek wrote:
>
> Can I build a higher layer on top of that?
that = "yum --installroot | docker load" ? Or that = "rpm-ostree
container"? For both the answer is yes - we currently use Anaconda-in-
ImageFactory to generate the official base images which are
On Thu, Feb 11, 2016 at 10:30 AM, Colin Walters wrote:
> On Wed, Feb 10, 2016, at 04:17 PM, Josh Berkus wrote:
> > On 02/10/2016 12:42 PM, Clayton Coleman wrote:
> > > Removing dnf would break most people who depend on fedora base images,
> > > since installing new packages is the reason people d
On Wed, Feb 10, 2016, at 04:17 PM, Josh Berkus wrote:
> On 02/10/2016 12:42 PM, Clayton Coleman wrote:
> > Removing dnf would break most people who depend on fedora base images,
> > since installing new packages is the reason people depend on the
> > fedora base image. Creating a fedora base image
> Why isn't this the default?
no, this saved 5MB
-rw-r--r--. 1 root root 8.3M Jun 17 2015 /usr/share/cracklib/pw_dict.pwd
-rw-r--r--. 1 root root 3.6M Jun 17 2015 /usr/share/cracklib/pw_dict.pwd.gz
and regarding /usr/lib/locale/locale-archive I guess it's the biggest
elephant
-rw-r--r--. 1 roo
On 02/11/2016 09:05 AM, Muayyad AlSadi wrote:
> here are what I install
>
> bash grep tar coreutils findutils rpm sed cpio cyrus-sasl file nc
> file-libs gawk xz openssh-server vi setup filesystem man passwd sudo
> iproute procps-ng iputils which net-tools psmisc
>
> sometimes when I over optimiz
here are what I install
bash grep tar coreutils findutils rpm sed cpio cyrus-sasl file nc file-libs
gawk xz openssh-server vi setup filesystem man passwd sudo iproute
procps-ng iputils which net-tools psmisc
sometimes when I over optimize I replace systemd (by a fake runtime rpm
that claim to pro
On 02/10/2016 05:13 PM, Josh Berkus wrote:
> On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
>> If possible, I'd like some feedback on the work I did. Comments and
>> criticism are more than welcomed! I realize there may be some
>> controversy in terms of what I chose to remove and what I chose t
On Thu, 2016-02-11 at 05:08 -0500, Daniel Riek wrote:
>
>
> On Thu, Feb 11, 2016 at 4:52 AM, Fabian Deutsch
> wrote:
> > On Wed, Feb 10, 2016 at 11:13 PM, Josh Berkus
> > wrote:
> > > On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
> > >>
> > >> If possible, I'd like some feedback on the work I
On Thu, Feb 11, 2016 at 4:52 AM, Fabian Deutsch wrote:
> On Wed, Feb 10, 2016 at 11:13 PM, Josh Berkus wrote:
> > On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
> >>
> >> If possible, I'd like some feedback on the work I did. Comments and
> >> criticism are more than welcomed! I realize there m
On Wed, Feb 10, 2016 at 11:13 PM, Josh Berkus wrote:
> On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
>>
>> If possible, I'd like some feedback on the work I did. Comments and
>> criticism are more than welcomed! I realize there may be some
>> controversy in terms of what I chose to remove and wh
On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
If possible, I'd like some feedback on the work I did. Comments and
criticism are more than welcomed! I realize there may be some
controversy in terms of what I chose to remove and what I chose to turn
into weak dependencies, but I would like to hea
On 02/10/2016 04:44 PM, Matt Micene wrote:
>
> The general consensus is to create a separate "utility" container
> which contains DNF and other similar tools (e.g., rhel tools).
>
>
> I'm a bit confused, how does this help folks who are trying to build
> their own containers from a Fedora
>
> The general consensus is to create a separate "utility" container which
> contains DNF and other similar tools (e.g., rhel tools).
>
I'm a bit confused, how does this help folks who are trying to build their
own containers from a Fedora base Docker image? Containers to build
containers? Use t
Yup, absolutely. Slimming down where we can is great - but I don't
want people to get a bad impression with the core fedora image for
sure.
On Wed, Feb 10, 2016 at 4:17 PM, Josh Berkus wrote:
> On 02/10/2016 12:42 PM, Clayton Coleman wrote:
>>
>> Removing dnf would break most people who depend o
On 02/10/2016 12:42 PM, Clayton Coleman wrote:
Removing dnf would break most people who depend on fedora base images,
since installing new packages is the reason people depend on the
fedora base image. Creating a fedora base image would dnf is
interesting as a side project (fedora-minimal?) but
Removing dnf would break most people who depend on fedora base images,
since installing new packages is the reason people depend on the
fedora base image. Creating a fedora base image would dnf is
interesting as a side project (fedora-minimal?) but I doubt would ever
see wide use in the community,
On 02/10/2016 11:38 AM, Courtney Pacheco wrote:
> Hi everyone,
>
> I recently analyzed the official Fedora docker base image to see how
> we can reduce its overall size. A summary of the work I did can be
> found here:
> https://gist.github.com/iamcourtney/1a4af7c4289014f57080
>
> If you're inter
26 matches
Mail list logo
