Hi guys,
I am a newbie to lxc and preparing to deploy it in my production
environment to give each user a container. I have the following two
concerns now.
1. Can user load kernel modules in the guest container without influencing
the host kernel or other container's kernel? As far as I understand, all
the lxc containers share the same kernel of the host. So I am wondering if
this is possible?
2. Or how is the container's security isolation? Can I give user root
access in the container? Is there any hack that he/she can use root in the
container to attack the host or other containers?
Thanks a lot for answering my stupid questions.
Regards,
Peter
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Lxc-devel mailing list
Lxc-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lxc-devel
