Quoting Dan Kegel (d...@kegel.com): > I'd like to strace a stray process, but in Ubuntu 12.04, to do that > you have to do > > echo 0 | sudo tee /proc/sys/kernel/yama/ptrace_scope > > This fails inside an LXC (ephemeral) container. > > But since there's only one kernel, you can do that in the host, and > it will affect the containers as well. > > At least for now. There's some talk of changing that > ( http://www.openwall.com/lists/kernel-hardening/2011/11/23/1 / > http://lkml.indiana.edu/hypermail/linux/kernel/1111.2/03494.html ) > > Is there an LXC FAQ somewhere for tidbits like this?
Not that I know of. -serge ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Lxc-users mailing list Lxc-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/lxc-users
