[lxc-users] More secure container
tcwu2005 at gmail.com
Tue May 9 15:22:02 UTC 2017
Its said privileged container is unsecured . For example, if a user in the
container (suppose it's running a service toward the public) hack the
system with some kind of root kit.
I am thinking of building a more secure container. The first idea is to
use unprivileged container; Second is apply cgroup to limit viewing of
some sensitive /dev files, and any recommendation?
-use unprivileged container
-cgroup to limit viewing of some /dev files
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the lxc-users