On 04/15/2011 06:43 PM, Greg Kurz wrote:
> On Fri, 2011-04-15 at 10:00 -0500, Rob Landley wrote:
>> On 04/13/2011 12:49 PM, Francois-Xavier Bourlet wrote:
>>> Hi,
>>>
>>> Here's a patch with the purpose adding a way to browse containers trough
>>> liblxc.
>>
>> What does "browse" mean in this cont
On Tue, Mar 22, 2011 at 10:20 AM, Nathan McSween wrote:
> Can I get a quick rundown of what is implemented w.r.t UID/GID
> containerization, is it safe yet to give containerized root to an
> everyday user without huge security issues?
Drop all dangerous capabilities and mount /proc read-only.
H
Oops, forgot to CC the mailing list!
here's my answer:
On Fri, Apr 15, 2011 at 9:58 AM, Francois-Xavier Bourlet
wrote:
> Yes I confirm what Gregory said. The purpose is to run some user code
> for each container (based on the name of it) for who link to the LXC
> library.
>
> I am actually worki
