[lxc-devel] a newbie question about loading kernel modules in container
cheetah
xuwh06 at gmail.com
Sun Jun 17 09:46:24 UTC 2012
Hi guys,
I am a newbie to lxc and preparing to deploy it in my production
environment to give each user a container. I have the following two
concerns now.
1. Can user load kernel modules in the guest container without influencing
the host kernel or other container's kernel? As far as I understand, all
the lxc containers share the same kernel of the host. So I am wondering if
this is possible?
2. Or how is the container's security isolation? Can I give user root
access in the container? Is there any hack that he/she can use root in the
container to attack the host or other containers?
Thanks a lot for answering my stupid questions.
Regards,
Peter
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-devel/attachments/20120617/c6da0ce8/attachment.html>
More information about the lxc-devel
mailing list