pupman
| Crates.io | pupman |
| lib.rs | pupman |
| version | 0.0.0 |
| created_at | 2025-06-20 05:36:29.753849+00 |
| updated_at | 2025-06-20 05:36:29.753849+00 |
| description | An unprivileged LXC container id mapping tool for Proxmox |
| homepage | |
| repository | |
| max_upload_size | |
| id | 1719146 |
| size | 124,399 |
Dan Kolsoi (TheDan64)
documentation
README
Proxmox UnPrivileged Manager
pupman is a lightweight CLI tool for managing UID/GID mappings for unprivileged LXC containers. It provides a clean interface to allocate and validate ID ranges defined in /etc/subuid and /etc/subgid, and ensures consistency and isolation in your container configurations.
β¨ Features
- π Scan and validate UID/GID ranges for conflicts and overlaps
- π Helps enforce user namespace isolation and prevent security issues
- π οΈ Ideal for homelabs, Proxmox setups, and manual LXC deployments
π¦ Installation
Cargo
If you already have Rust installed, you can use Cargo to add pupman as a dependency in your project:
cargo install pupman
π Why This Matters
Unprivileged LXC containers rely on UID/GID mapping to isolate the container's root user from the host. Mismanaged or overlapping mappings can:
- Break container startup
- Lead to privilege escalation risks
- Create hard-to-debug permission issues
pupman takes the guesswork out of ID management by giving you a clear view of how your subuid/subgid space is usedβand helps you avoid stepping on yourself.
π‘οΈ Disclaimer
This project is not affiliated with or endorsed by Canonical Ltd., the LinuxContainers project, Proxmox, or the developers of LXC. All trademarks, including "LXC", are the property of their respective owners.