[lxc-users] Overcommit and kernel isolation
Tamas Papp
tompos at martos.bme.hu
Thu Oct 9 08:15:41 UTC 2014
On 10/09/2014 10:07 AM, Bertrand Paquet wrote:
> Hi all,
>
> I have noticed that changing the overcommit
> (/proc/sys/vm/overcommit_memory) mode inside a container change the
> overcommit mode of the host. Is it normal ?
>
> For /proc/sys/kernel/shmmax, the value seems to be local to the container.
>
> Regards,
>
> Bertrand
>
> PS : my LXC version : 1.0.1
>
Without apparmor, selinux or other restictions and privileged containers
yes, it is.
AFAIK there is no namespace for that.
tamas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.linuxcontainers.org/pipermail/lxc-users/attachments/20141009/92c0b431/attachment.html>
More information about the lxc-users
mailing list