leaving setfcap in docker containers
Daniel J Walsh
dwalsh at redhat.com
Wed Oct 2 14:14:32 UTC 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 10/01/2013 09:28 AM, Matthew Miller wrote:
> On Mon, Sep 30, 2013 at 08:19:28AM -0400, Daniel J Walsh wrote:
>> I plan on working on adding SELinux to wrap the docker container as we
>> have done for the virt-sandbox containers, but we still allow a lot of
>> privs to a privledged process within the container.
>
> Do you have (or want?) a bugzilla entry to track that? Because I kind of
> see that as a killer feature for our Docker implementation.
>
Sure open a bugzilla on it.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.14 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iEYEARECAAYFAlJMKkgACgkQrlYvE4MpobNI7ACgsIv5rV5RTA/pwkzcOb0NMHwc
xCsAmgLhzAxJIF3h1LInGDEVLO1uy1/F
=2XvP
-----END PGP SIGNATURE-----
More information about the security
mailing list