lxc: Bindmount /etc/skel in all containers.

diff --git a/var/lib/lxc/ldap/config b/var/lib/lxc/ldap/config
index afd7155d91e35fee3286dcaeb01701b3ac4c0d46..de39d44fefcb9152724a0e89461eeae21d4bd631 100644 (file)
--- a/var/lib/lxc/ldap/config
+++ b/var/lib/lxc/ldap/config
@@ -55,6 +55,7 @@ lxc.mount.entry=proc proc proc nodev,noexec,nosuid 0 0
 lxc.mount.entry=sysfs sys sysfs defaults  0 0
 lxc.mount.entry=/data/db/ldap data/db/ldap none defaults,bind  0 0
 lxc.mount.entry=/data/users data/users none defaults,bind 0 0
+lxc.mount.entry=/etc/skel etc/skel none defaults,bind,ro 0 0
 
 # Disallow module (un)loading
 lxc.cap.drop = sys_module

diff --git a/var/lib/lxc/template/config b/var/lib/lxc/template/config
index e7aca33bf2eca41c077208d7455fe770edc11961..c891c663c6f1336c1b4101c72ee34d6fdb87b58d 100644 (file)
--- a/var/lib/lxc/template/config
+++ b/var/lib/lxc/template/config
@@ -50,10 +50,11 @@ lxc.cgroup.devices.allow = c 5:2 rwm
 lxc.cgroup.devices.allow = c 254:0 rwm
 
 # mounts (note that the second item in each list is the mount point, relative
-# to the rootfs)
+ to the rootfs)
 lxc.mount.entry=proc proc proc nodev,noexec,nosuid 0 0
 lxc.mount.entry=sysfs sys sysfs defaults  0 0
 lxc.mount.entry=/data/users data/users none defaults,bind 0 0
+lxc.mount.entry=/etc/skel etc/skel none defaults,bind,ro 0 0
 
 # Disallow module (un)loading
 lxc.cap.drop = sys_module