This repository has been archived by the owner on Dec 11, 2024. It is now read-only.
Désactiver l'ASLR sur Kata sans casser l'isolation. #1
Labels
question
Further information is requested
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Il est possible de modifier /proc dans un container en le démarrant en mode privilégié (--privileged). Cependant cela monte également des dossiers du système hôte et casse l'isolation.
Des solutions sont proposées kata-containers/runtime#1568 docker-library/docker#191, mais je ne sais pas si elles conservent le niveau de sécurité voulue.
The text was updated successfully, but these errors were encountered: