Hi , Its said privileged container is unsecured . For example, if a user in the container (suppose it's running a service toward the public) hack the system with some kind of root kit.
I am thinking of building a more secure container. The first idea is to use unprivileged container; Second is apply cgroup to limit viewing of some sensitive /dev files, and any recommendation? Summary -use unprivileged container -cgroup to limit viewing of some /dev files
_______________________________________________ lxc-users mailing list [email protected] http://lists.linuxcontainers.org/listinfo/lxc-users
