I would like to call the systemd unit lxc@.service to run an unprivileged container that I created as the root user rather than as a system user. Does doing so present any security concerns?
For reference, I created the container like this: 1) Added the following to /etc/lxc/default.conf lxc.id_map = u 0 100000 65536 lxc.id_map = g 0 100000 65536 2) Created /etc/subgid and /etc/subuid (both 644) that both contain the following line: root:100000:65536 3) as root, ran `lxc-create -n unprivileged -t download` _______________________________________________ lxc-users mailing list lxc-users@lists.linuxcontainers.org http://lists.linuxcontainers.org/listinfo/lxc-users
