On 04/05/2016 01:34 PM, Malahal Naineni wrote: > Csaba Dobo [[email protected]] wrote: >> Hi, >> as far as I know this container is running in privileged mode according >> to: >> cat /proc/self/uid_map >> 0 0 4294967295 menas priviledge, right? >> but I am sure you are right, but have no idea how to confirm what is the >> problem and how to change it. > > I am not familiar with containers/namespaces. > > What does "grep ^Cap /proc/$(pidof ganesha.nfsd)/status" display? Can > you decode the caps with capsh? > > Regards, malahal. >
I'm pretty sure that capabilities can appear to be on in a container, but still be off outside the container. That's why the container itself needs to run in privileged mode. Daniel ------------------------------------------------------------------------------ _______________________________________________ Nfs-ganesha-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/nfs-ganesha-devel
