** Changed in: lxc (Ubuntu)
Status: Triaged = In Progress
** Changed in: lxc (Ubuntu)
Assignee: (unassigned) = Serge Hallyn (serge-hallyn)
** Changed in: lxc (Ubuntu)
Importance: Wishlist = Low
--
You received this bug notification because you are a member of Ubuntu
Server Team,
** Branch linked: lp:~serge-hallyn/ubuntu/oneiric/lxc/fix-checkconfig
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/827798
Title:
LXC works without warning regardless if cgroup
This bug was fixed in the package lxc - 0.7.5-0ubuntu7
---
lxc (0.7.5-0ubuntu7) oneiric; urgency=low
* Fix lxc-checkconfig to correctly detect support for clone_children, so
as not to erroneously report failure. (LP: #827798)
-- Serge Hallyn serge.hal...@canonical.com Fri,
** Changed in: lxc (Ubuntu)
Milestone: ubuntu-11.10-beta-1 = ubuntu-11.10-beta-2
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/827798
Title:
LXC works without warning regardless
Can you be more specific on these security issues?
We don't ship a LSM out of the box (nor is there a quick and easy way to
set one up). LXC is the cloud computing solution for ARM until hardware
virtualization becomes available, and I was unaware of any security
concerns in using it.
--
You
** Tags added: server-o-ro
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to lxc in Ubuntu.
https://bugs.launchpad.net/bugs/827798
Title:
LXC works without warning regardless if cgroup namespaces are properly
available
To manage
Hi Dave,
the priority of this (admittedly set by me) is wishlist. But you're
targetting it. Please do bump the priority if you feel that's the thing
to do. Otherwise it's unlikely I'll get to it.
Note that this shouldn't require any deep knowledge, so anyone else can
jump in and make the
Thanks for taking the time to submit this bug.
LXC will not run without warning if full cgroup isolation is unvailable
- if that were the case this woudl be high priority, but it isn't so
II'm changing the priority of this to wishlist.
The clone_children flag gets set by lxc at lxc-start. If
Thanks Serge. That behavior should be documented somewhere, since I was
greatly concerned there was a security issue in LXC. At least we know
that LXC now works properly in ARM, and I can now close out the LXC-ARM
work items.
--
You received this bug notification because you are a member of
Quoting Michael Casadevall (827...@bugs.launchpad.net):
Thanks Serge. That behavior should be documented somewhere, since I was
Yup, lxc-checkconfig needs to be updated.
greatly concerned there was a security issue in LXC.
Note that until lxc can exploit user namespaces, there are plenty of
10 matches
Mail list logo
