From Gentoo Wiki
Jump to:navigation Jump to:search

Potential security issues in "Rootless containers under OpenRC" setup

Talk status
This discussion is still ongoing.

The information i've provided in the "Rootless containers under OpenRC" section is the best i've been able to come up with after failed attempts to instead use the --cgroup-parent and --cgroupns options to podman-create(1) / podman-run(1) in various ways - including in consultation with someone on #podman, who suggested input from someone knowledgeable about cgroups is required.

-- Flexibeast (talk) 13:58, 12 May 2024 (UTC)