On Fri, Mar 23, 2018 at 02:28:11PM +0100, ales drtik wrote: > Thanks for info about that. > This means to use apparmor mandatory, isn't it true? If you enable user namespaces for the container that is sufficient to provide a secure config. None the less we still recommend /also/ adding MAC like SELinux or AppArmor on top. Regards, Daniel -- |: https://berrange.com -o- https://www.flickr.com/photos/dberrange :| |: https://libvirt.org -o- https://fstop138.berrange.com :| |: https://entangle-photo.org -o- https://www.instagram.com/dberrange :| _______________________________________________ libvirt-users mailing list libvirt-users@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/libvirt-users
