On Sun, Aug 18, 2019 at 5:36 PM Georg Gast wrote:
> Hi,
>
> i use currently unprivileged lxc containers on debian buster started as
> root. I use for every container a separate set of uid/gids.
>
>
> Debian Buster uses LXC 3.1.0
>
> Is in this setup any security gained, if the containers are st
Hi,
i use currently unprivileged lxc containers on debian buster started as
root. I use for every container a separate set of uid/gids.
If i start the container from root, the lxc-monitor is run by root on
the host. Init is on uid 10 (seen from host).
If i start it as a regular user, lxc-mon