[Lxc-users] lxc container proc and sysfs ro and not rw?
Andreas Laut
andreas.laut at spark5.de
Wed Sep 4 13:13:00 UTC 2013
Hi list,
usually lxc container mounting proc and sysfs read-write. With this
configuration one container can easily kill the host system and all the
running containers on it. (as both are global)
So we think about mounting proc and sysfs read-only.
Our test server/container runs smoothly and doesn't show any problems
until now.
Has someone testing this already or productive in use? Why is the
default to mount both read-write?
Your help and ideas are appreciate,
Regards
Andreas
More information about the lxc-users
mailing list