projects / matthijs / servers / tika.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: b77df5e) | patch
lxc: Drop a bunch of capabilities in the template container
authorMatthijs Kooijman <matthijs@stdin.nl>
Wed, 17 Aug 2011 12:44:45 +0000 (14:44 +0200)
committerMatthijs Kooijman <matthijs@stdin.nl>
Wed, 17 Aug 2011 12:46:11 +0000 (14:46 +0200)
commita08ca92cb5112693560c9b2d8454f49d56a23230
tree692b4fec9a8a25c8669d4f453de8566236dd9fa9tree | snapshot
parentb77df5e1630acf8e98af7073009adfec001d0a17commit | diff
lxc: Drop a bunch of capabilities in the template container

This should enhance the security of the containers a bit, but it's
certainly not foolproof yet and dropping these capabilities might have
side effects as well (some are a bit coarse-grained, like sys_admin).
var/lib/lxc/template/config diff | blob | history
Unnamed repository; edit this file to name it for gitweb.