firstly,I execute lxc-setcap as root,then I execute lxc-execute as normal
user,but it turns out to be error which says it doesn't run with proper
privilege.what'more ,it still doesn't work even after I execute lxc-setuid
as root.
However,when I use lxc in centos and redhat,after I execute lxc-setcap,l
can execute lxc-execute without privilege.
2012/6/29 Serge Hallyn <serge.hal...@canonical.com>
> Quoting Sam Wang (zhefw...@gmail.com):
> > I know it can not work with shell scripts and it can not work with binary
> > executable file.
>
> It can work with binary executables, but of course the capabilities won't
> persist across execve, which may be what you meant.
>
> > such as lxc-execute.I used lxc in centos 6.2 and red hat
> > 6.1,it did work.
>
> Then please define 'did not work' in ubuntu.
>
> > btw: the version of lxc is 0.7.5 installed by apt-get install
>
> In any case, you'll "soon" be able to user user namespaces to start
> containers without needing privilege (a start to the lxc patch is at
> https://code.launchpad.net/~serge-hallyn/ubuntu/quantal/lxc/lxc-user-ns,
> but the kernel patchset, at
> http://kernel.ubuntu.com/git/serge/quantal-userns.git ,
> needs some more features).
>
> -serge
>
--
Zhefeng Wang
University of Science and Technology of China
Email:zhefw...@gmail.com
In God we trust, all others bring data
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
Lxc-users mailing list
Lxc-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/lxc-users
