proxmox-mirrors/mirror_lxc
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_lxc synced 2025-08-03 17:30:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

doc: Mention that veth.pair is ignored for unpriv

Browse Source 
veth.pair is ignore for unprivileged containers as allowing an
unprivileged user to set a specific device name would allow them to
trigger actions in tools like NetworkManager or other uevent based
handlers that may react based on specific names or prefixes being used.

Signed-off-by: Stéphane Graber <stgraber@ubuntu.com>
This commit is contained in:
Stéphane Graber 2014-07-15 21:32:46 -04:00
parent 7edae51efc
commit 8982c0fd5e
No known key found for this signature in database
GPG Key ID: C638974D64792D67
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
doc/lxc.container.conf.sgml.in
View File

@ -259,7 +259,9 @@ Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
by <command>lxc</command>, but if you wish to handle
this name yourself, you can tell <command>lxc</command>
to set a specific name with
the <option>lxc.network.veth.pair</option> option.
the <option>lxc.network.veth.pair</option> option (except for
unprivileged containers where this option is ignored for security
reasons).
</para>
<para>