Skip to content

L
lxc
Unverified Commit 06c2e893 by Christian Brauner
Options

config: allow read-write /sys in user namespace

Unprivileged containers can safely mount /sys as read-write. This also allows systemd-udevd to be started in unprivileged containers. Signed-off-by: 's avatarChristian Brauner <christian.brauner@ubuntu.com>
parent 670c689b
Showing with 3 additions and 0 deletions
config/templates/userns.conf.in
...@@ -8,3 +8,6 @@ lxc.cap.keep = ...@@ -8,3 +8,6 @@ lxc.cap.keep =
# We can't move bind-mounts, so don't use /dev/lxc/ # We can't move bind-mounts, so don't use /dev/lxc/
lxc.devttydir = lxc.devttydir =
# Setup the default mounts
lxc.mount.auto = sys:rw
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment