The full version of this, with an explanation of everything is here, this one is written for copy-paste and speed.
This version is meant to create unprivileged LXC containers owned by root subordinates, which in my opinion provides the best balance of security and flexibility.
- Install Debian 12 (bookworm) on a computer or virtual machine or what have you.
- I personally enable root access under SSH, so all the commands you see here are run as root, you may use another user with sudo if you wish, but i execute as root
- Execute the following to install LXC (I am installing LXC and KVM) but you might want to remove KVM
apt-get update apt-get install bridge-utils lxc libvirt-clients libvirt-daemon-system debootstrap qemu-kvm bridge-utils virtinst nmap resolvconf iotop net-tools
Most installations will have 2 users, root and another username you chose while installing the operating system,