On Fri, Jan 13, 2017 at 08:52:14PM +, John wrote:
>
>
>
>
> - Original Message -
> > From: Serge E. Hallyn
> > To: LXC users mailing-list
> > Sent: Friday, January 13, 2017 11:20 AM
> > Subject: Re: [lxc-users] Risk/benefit
Thanks guys, for providing the context around this.
___
lxc-users mailing list
lxc-users@lists.linuxcontainers.org
http://lists.linuxcontainers.org/listinfo/lxc-users
On Sat, Jan 14, 2017 at 09:39:10AM +0700, Fajar A. Nugraha wrote:
> On Sat, Jan 14, 2017 at 4:56 AM, Fajar A. Nugraha wrote:
>
> > On Sat, Jan 14, 2017 at 3:52 AM, John wrote:
> >
> >>
> >> Again, thank you for the detailed reply. Are the nature of
On Sat, Jan 14, 2017 at 4:56 AM, Fajar A. Nugraha wrote:
> On Sat, Jan 14, 2017 at 3:52 AM, John wrote:
>
>>
>> Again, thank you for the detailed reply. Are the nature of these sorts
>> of interactions such that users require physical access or ssh
On Sat, Jan 14, 2017 at 3:52 AM, John wrote:
>
> Again, thank you for the detailed reply. Are the nature of these sorts of
> interactions such that users require physical access or ssh access to the
> host machine in order to exploit, or can they originate from within
- Original Message -
> From: Serge E. Hallyn
> To: LXC users mailing-list
> Sent: Friday, January 13, 2017 11:20 AM
> Subject: Re: [lxc-users] Risk/benefit of enabling user namespaces in the
> kernel for running unprivileged
Quoting John (da_audioph...@yahoo.com):
> From S. Graber's blog[1] and other sources, consensus is that unprivileged
> containers offer the best security from the container's perspective. There
> is quite a discussion in an Arch Linux feature request[2] around the risks of
> enabling user