All Topics
All Topics
Technology
Technology
Design
Design
Programming
Programming
Science
Science
News
News
Gaming
Gaming
Entertainment
Entertainment
Business
Business
Finance
Finance
Sports
Sports
Health
Health
Food
Food
Travel
Travel
Art
Art
Music
Music
Books
Books
Education
Education
Politics
Politics
Personal
Personal
No algorithm. No AI slop. No ads. Just RSS. Pro-human. Indie writers. Real journalism. Open web. Chronological. Hand toasted.

Proxmox Upgrade Experience: Resolving Docker-in-LXC AppArmor Issues

By

speckx

6mo ago· 3 min readen
Bagel score 80 of 100
80/100
Golden Brown
Bagelometer

Toasted golden, schmeared with insight. Top of the rack.

Score80Typehow-toSentimentneutral

Summary

The article describes the author's experience with upgrading Proxmox from version 8 to 9 to resolve issues with running Docker inside LXC containers. The author encountered AppArmor-related problems when trying to deploy applications like coolify and dokploy in their homelab, which were traced to a runc issue that was fixed in the newer pve-lxc package available only in Proxmox 9. The upgrade process was straightforward for one node but encountered issues with the second node.

Key quotes

· 4 pulled
Running docker inside LXC is weird. It's containers on top of other container
there was a fairly recent issue with AppArmor that prevented some functionality from running inside a docker container with very cryptic error
I was trying to deploy coolify and/or dokploy in my homelab and hitting all sorts of weird issues
apparently, it was fixed in the new version of pve-lxc package. But I'm still on Proxmox 8, and the new version seemingly only available in Proxmox 9
Snippet from the RSS feed
📺Hacker News Thread Running docker inside LXC is weird. It's containers on top of other container, and there was a fairly recent issue with AppArmor that prevented some functionality from running inside a docker container with very cryptic error. I was t

You might also wanna read

systemd-manager-tui: A Terminal-Based Tool for Managing systemd Services

A TUI (Terminal User Interface) application called systemd-manager-tui, available on GitHub, allows users to manage systemd services via D-B

github.com·28d ago

GTFOBins: A Curated List of Unix Binaries for Bypassing Local Security Restrictions

GTFOBins is a curated list of Unix-like binaries that can be exploited to bypass local security restrictions in misconfigured systems. The l

gtfobins.org·1mo ago

How to Enable ZRAM on Linux Systems for Better Memory Optimization

The article discusses enabling ZRAM (compressed RAM) on Linux systems to optimize memory usage and potentially save money on hardware upgrad

cnx-software.com·1mo ago

Cells for NetBSD: Kernel-Enforced Isolation System with Practical Operations

Cells for NetBSD is a kernel-enforced isolation system for the NetBSD operating system that provides jail-like containerization with practic

netbsd-cells.petermann-digital.de·1mo ago

Understanding Linux Compressed Swap: zswap vs zram Technical Comparison and Recommendations

This article provides expert guidance on Linux memory management technologies zswap and zram, explaining their fundamental differences and o

chrisdown.name·2mo ago

Direct Disk Installation: Creating a Linux Distro That Installs via curl > /dev/sda

The article describes a technical experiment where the author created a Linux distribution that can be installed by directly piping a disk i

astrid.tech·2mo ago