Skip to content

Dangerous instruction #23559

New issue
New issue
Open
Open
Dangerous instruction#23559
Labels
status/triageNeeds triage
@subhappy

Description

@subhappy
subhappy
opened on Oct 15, 2025

Is this a docs issue?

  • My issue is about the documentation content or website

Type of issue

Information is incorrect

Description

I tried

Create and install the currently logged-in user's AppArmor profile:

 filename=$(echo $HOME/bin/rootlesskit | sed -e s@^/@@ -e s@/@.@g)
 cat <<EOF > ~/${filename}
abi <abi/4.0>,
include <tunables/global>

"$HOME/bin/rootlesskit" flags=(unconfined) {
  userns,

  include if exists <local/${filename}>
}
EOF
 sudo mv ~/${filename} /etc/apparmor.d/${filename}

Got an error that @^/@@ didn't expand or some such, didn't consider it, proceeded to do a reboot to see if that would help rootless docker containers access docker.sock.

Upon reboot, I was greeted by services failing and my home directory gone.

The command sudo mv ~/${filename} /etc/apparmor.d/${filename} had moved my home directory into /etc/apparmor.d.

Location

https://docs.docker.com/engine/security/rootless/troubleshoot/

Suggestion

Please consider adding some error handling before running such a destructive command.

Metadata

Metadata

Assignees

No one assigned

    Labels

    status/triageNeeds triage

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions