Hi all, I'm rather new to LXC (although I've been using it for two years now) and have some questions about security. I know many of these have been discussed in various websites, but I'd like to get advice from real users - and many articles I've read may be outdated.
1) I've read that lxc wasn't secure because anyone with root access on the container might have access to the host. Is it true with ssh access (I mean no console)? 2) Which capabilities would you drop for web servers were users have www-data access? 3) What are/would be the danger of running lxc in production servers? Many thanks for your input. :-) JFL PS: I'm planning on running lxc (squeeze) containers inside debian hosts. ------------------------------------------------------------------------------ Own the Future-Intel® Level Up Game Demo Contest 2013 Rise to greatness in Intel's independent game demo contest. Compete for recognition, cash, and the chance to get your game on Steam. $5K grand prize plus 10 genre and skill prizes. Submit your demo by 6/6/13. http://p.sf.net/sfu/intel_levelupd2d _______________________________________________ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
