[lxc-devel] [PATCH v2] Remove a comment part from a config value
KATOH Yasufumi
karma at jazz.email.ne.jp
Fri Aug 29 00:27:50 UTC 2014
>>> On Thu, 28 Aug 2014 14:52:21 -0400
in message "Re: [lxc-devel] [PATCH v2] Remove a comment part from a config value"
Michael H. Warfield-san wrote:
> ???
> Just checked centos.common.conf, oracle.common.conf and
> fedora.common.conf. I don't see them. I do see lines like this:
> # lxc.cap.drop = net_raw # breaks dhcp/ping
> # lxc.cap.drop = setgid # breaks login (initgroups/setgroups)
> # lxc.cap.drop = dac_read_search # breaks login (pam unix_chkpwd)
> # lxc.cap.drop = setuid # breaks sshd,nfs statd
> # lxc.cap.drop = audit_control # breaks sshd (set_loginuid failed)
On stable-1.0, centos.common.conf and oracle.common.conf have:
lxc.cgroup.devices.allow = c 1:3 rwm # /dev/null
lxc.cgroup.devices.allow = c 1:5 rwm # /dev/zero
lxc.cgroup.devices.allow = c 1:7 rwm # /dev/full
lxc.cgroup.devices.allow = c 5:0 rwm # /dev/tty
lxc.cgroup.devices.allow = c 1:8 rwm # /dev/random
lxc.cgroup.devices.allow = c 1:9 rwm # /dev/urandom
lxc.cgroup.devices.allow = c 136:* rwm # /dev/tty[1-4] ptys and lxc console
lxc.cgroup.devices.allow = c 5:2 rwm # /dev/ptmx pty master
More information about the lxc-devel
mailing list