leaving setfcap in docker containers
Matthew Miller
mattdm at fedoraproject.org
Fri Oct 4 20:27:35 UTC 2013
On Mon, Sep 30, 2013 at 08:19:28AM -0400, Daniel J Walsh wrote:
> I plan on working on adding SELinux to wrap the docker container as we have
> done for the virt-sandbox containers, but we still allow a lot of privs to a
> privledged process within the container.
Another question, probably a dumb one. Will this work with the lxc-tools
approach or just with libvirt-lxc?
--
Matthew Miller ☁☁☁ Fedora Cloud Architect ☁☁☁ <mattdm at fedoraproject.org>
More information about the security
mailing list