Quoting Devendra K. Modium (dmod...@isi.edu): > Hi > > Please let me know is it possible to hide PCI devices inside the container. > Although I used the cgroups.deny=a option in the configuration script. > When I run the command lspci inside container, I can see all the devices > connected to host machine. > > Please let me know if I can avoid it someway or is there any development > going on currently.
Not currently possible. Things that would help this are /proc and /sys filtering and device namespaces. Daniel was looking into a /proc filtering approach recently, but noone is working on device namespaces that I know of. ------------------------------------------------------------------------------ All of the data generated in your IT infrastructure is seriously valuable. Why? It contains a definitive record of application performance, security threats, fraudulent activity, and more. Splunk takes this data and makes sense of it. IT sense. And common sense. http://p.sf.net/sfu/splunk-d2d-c2 _______________________________________________ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users