I'd like to strace a stray process, but in Ubuntu 12.04, to do that you have to do
echo 0 | sudo tee /proc/sys/kernel/yama/ptrace_scope This fails inside an LXC (ephemeral) container. But since there's only one kernel, you can do that in the host, and it will affect the containers as well. At least for now. There's some talk of changing that ( http://www.openwall.com/lists/kernel-hardening/2011/11/23/1 / http://lkml.indiana.edu/hypermail/linux/kernel/1111.2/03494.html ) Is there an LXC FAQ somewhere for tidbits like this? ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
