proxmox-mirrors/mirror_lxc
1
0
Fork 0
mirror of https://git.proxmox.com/git/mirror_lxc synced 2025-07-14 12:47:41 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
6aae19f7c8
mirror_lxc/config
History
Wolfgang Bumiller e6ec0a9e71 apparmor: allow various remount,bind options 
RW bind mounts need to be restricted for some paths in
order to avoid MAC restriction bypasses, but read-only bind
mounts shouldn't have that problem.

Additionally, combinations of 'nosuid', 'nodev' and
'noexec' flags shouldn't be a problem either and are
required with newer systemd versions, so let's allow those
as long as they're combined with 'ro,remount,bind'.

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
2018-11-16 12:17:30 +01:00
..
apparmor apparmor: allow various remount,bind options 2018-11-16 12:17:30 +01:00
bash tree-wide: cleanup 2018-02-28 10:05:33 +01:00
etc testcase: define a network before checks 2017-06-29 13:18:41 +08:00
init spelling: timeout 2018-10-30 08:14:58 +00:00
selinux doc: s/se_context/selinux.context/g 2017-07-12 09:58:35 +08:00
sysconfig sysconfig/lxc: Reverse sourcing logic 2014-09-29 18:43:36 -04:00
templates config: allow read-write /sys in user namespace 2018-05-15 15:51:58 +02:00
yum install lxc-patch.py 644 to fix rpmlint warning 2014-05-07 08:48:20 -05:00
acinclude.m4 Remove all trailing whitespaces. 2012-11-26 12:08:13 -05:00
ax_check_compile_flag.m4 autotools: add -Wimplicit-fallthrough 2018-09-21 15:24:14 +02:00
ax_check_link_flag.m4 autotools: support -z relro and -z now 2018-09-28 22:58:20 +02:00
ax_pthread.m4 Use AX_PTHREAD config script to detect pthread api 2017-11-26 16:45:22 -02:00
Makefile.am Rework init scripts 2014-09-26 10:55:11 -04:00
tls.m4 support tls in cross-compile 2018-06-04 19:42:23 +08:00