[Lxc-users] non-root exploits?
Matteo Bernardini
matteo.bernardini at gmail.com
Tue Sep 6 05:00:23 UTC 2011
non-root users should be perfectly safe inside a container.
the problem could arise if they gain root privileges through a flaw in
other software, kernel or userspace, but this should apply also for
physical hosts: in lxc containers your can mitigate this with dropping
some capabilities or using other additional methods, Olivier suggested
a useful SMACK setup a month ago
http://www.mail-archive.com/lxc-users@lists.sourceforge.net/msg02382.html
Matteo
More information about the lxc-users
mailing list