On Mon, Jan 19, 2026, at 05:30, Jan Lübbe wrote: > On Linux, setting the system clock is protected by CAP_SYS_TIME, see > capabilities(7). So just don't give your containers this capability. > podman/docker drop it by default.
Unless of course you are granting CAP_SYS_ADMIN to your containers, in which case you've got much larger problems than the system clock being modified! -- To unsubscribe email [email protected] with "unsubscribe" in the subject. For help email [email protected] with "help" in the subject. Trouble? Email [email protected].
