Hello,
Can tomoyo play nicely with container technologies like docker?
In other words is it possible to deploy a tomoyo policy that only applies
to a specific container?
This would mean that a process in the container may for example issue an
open("/etc/x.conf", ...), in its own mount namespace, and I want to allow
that open only in that container, but not for instance in the host (where
"/etc/x.conf" is a different file, if it exists), or in other containers
running on the same host.
Thanks,
Vincenzo
_______________________________________________
tomoyo-users-en mailing list
tomoyo-users-en@lists.osdn.me
https://lists.osdn.me/mailman/listinfo/tomoyo-users-en
