subject:"Re\: \[lxc\-users\] Risk\/benefit of enabling user namespaces in the kernel for running unprivileged containers"

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-29 Thread Serge E. Hallyn

On Fri, Jan 13, 2017 at 08:52:14PM +, John wrote: > > > > > - Original Message - > > From: Serge E. Hallyn > > To: LXC users mailing-list > > Sent: Friday, January 13, 2017 11:20 AM > > Subject: Re: [lxc-users] Risk/benefit

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-22 Thread John

Thanks guys, for providing the context around this. ___ lxc-users mailing list lxc-users@lists.linuxcontainers.org http://lists.linuxcontainers.org/listinfo/lxc-users

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-15 Thread Serge E. Hallyn

On Sat, Jan 14, 2017 at 09:39:10AM +0700, Fajar A. Nugraha wrote: > On Sat, Jan 14, 2017 at 4:56 AM, Fajar A. Nugraha wrote: > > > On Sat, Jan 14, 2017 at 3:52 AM, John wrote: > > > >> > >> Again, thank you for the detailed reply. Are the nature of

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-13 Thread Fajar A. Nugraha

On Sat, Jan 14, 2017 at 4:56 AM, Fajar A. Nugraha wrote: > On Sat, Jan 14, 2017 at 3:52 AM, John wrote: > >> >> Again, thank you for the detailed reply. Are the nature of these sorts >> of interactions such that users require physical access or ssh

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-13 Thread Fajar A. Nugraha

On Sat, Jan 14, 2017 at 3:52 AM, John wrote: > > Again, thank you for the detailed reply. Are the nature of these sorts of > interactions such that users require physical access or ssh access to the > host machine in order to exploit, or can they originate from within

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-13 Thread John

- Original Message - > From: Serge E. Hallyn > To: LXC users mailing-list > Sent: Friday, January 13, 2017 11:20 AM > Subject: Re: [lxc-users] Risk/benefit of enabling user namespaces in the > kernel for running unprivileged

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

2017-01-13 Thread Serge E. Hallyn

Quoting John (da_audioph...@yahoo.com): > From S. Graber's blog[1] and other sources, consensus is that unprivileged > containers offer the best security from the container's perspective. There > is quite a discussion in an Arch Linux feature request[2] around the risks of > enabling user

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

Re: [lxc-users] Risk/benefit of enabling user namespaces in the kernel for running unprivileged containers

7 matches

Site Navigation

Mail list logo

Footer information