Le Blog Utux

For some reasons I use syncthing inside a container with a volume that is located in my home directory. While it's designed to run on Docker, it also works fine with podman which is rootless.

Until SELinux kicks in.

In this post I will try to explained how I managed to make syncthing work inside a podman container on a host where SELinux is present and enforced.

Major warning: I'm not an SELinux expert, and I noticed that policies generated by udica are quite permissive. This is a quick & dirty & easy solution for those who don't want to turn off SELinux.

Lire la suite de SELinux: playing with podman + syncthing