bug#45980: Feature request: parameterized /var/guix/profiles/per-user

bug-guix

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#45980: Feature request: parameterized /var/guix/profiles/per-user

From:	Dimitri DELABROYE
Subject:	bug#45980: Feature request: parameterized /var/guix/profiles/per-user
Date:	Tue, 19 Jan 2021 14:34:47 +0100
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.5.1

Hi,

We have installed guix following this cluster documentationhttps://hpc.guix.info/blog/2017/11/installing-guix-on-a-cluster/ onGrid'5000 which is a testbed.

In order to be more secure we did not want to export /var/guix with RWrights, we cannot trust root on the nodes. So for the user profile towork we did the following:

    - mount the user's home on the guix server

- instead of letting guix create the user's profile on/var/guix/profiles/per-user we created symlink: ln -s /home/USER/.guix/var/guix/profiles/per-user/USERThis way we can export /var/guix with RO rights and users can't see eachothers profiles.

Another way would be to have a parameter to configure the/var/guix/profiles/per-user directory so the symlink mecanism would notbe needed. For example guix could directly write in the user directoryin /home/USER/.guix.


Best regards,
Dimitri

Grid'5000 Techteam

[Prev in Thread]

Current Thread

[Next in Thread]

bug#45980: Feature request: parameterized /var/guix/profiles/per-user, Dimitri DELABROYE <=
- bug#45980: Feature request: parameterized /var/guix/profiles/per-user, Ludovic Courtès, 2021/01/21

Prev by Date: bug#45826: SBCL / Common Lisp packages fail to build on aarch64
Next by Date: bug#30210: pandoc not reproducible
Previous by thread: bug#45978: kodi-cli error: "show_help: command not found"
Next by thread: bug#45980: Feature request: parameterized /var/guix/profiles/per-user
Index(es):
- Date
- Thread