[lxc-devel] [PATCH] lxc-alpine: download statically compiled package manager if not available on host
Natanael Copa
ncopa at alpinelinux.org
Sat May 18 18:48:57 UTC 2013
On Fri, 17 May 2013 11:32:34 -0500
Serge Hallyn <serge.hallyn at ubuntu.com> wrote:
> I'm not quite ready to send it (and have been derailed with wanting to
> finish api conversion of a few commands, and other stuff next week),
> but I do have a working patch introducing 'lxc-ubuntu-cloud-user'
> template, which allows an unprivileged user to create a container,
> and will run everything (except the tiny program which maps uids)
> without root.
>
> lxc-alpine looks like it will be another good candidate for this (as
> is lxc-cirros). Basically anything which untars. rsync is harder
> (hard enough that we may never support it) and debootstrap
> impossible...
I'd rather aim for not running any binary that has not been
cryptographically verified, at least for Alpine Linux.
-nc
More information about the lxc-devel
mailing list