[libvirt-users] libvirt-sandbox on Ubuntu with SELinux
boden
boden at linux.vnet.ibm.com
Wed Nov 20 21:02:18 UTC 2013
I'm attempting to build/use libvirt-sandbox on Ubuntu 12.xx. Although
I'm still working through dependency issues (including the need for
libvirt >= 1.0.2 which is not packaged for ubuntu 12.xx) to build the
sandbox code, I have a forward looking question.
It appears libvirt-bin for Ubuntu likes apparmor as does most Ubuntu
based packages using a LSM impl. However, as I understand
libvirt-sandbox is integrated with SELinux to provide security isolation
of containers...
My question becomes -- *should* libvirt-sandbox work on Ubuntu assuming
I use the ubuntu libvirt-bin package and replace apparmor with selinux?
Or am I flat out walking into quicksand on Ubuntu here?
Without the security aspect of libvirt-sandbox, I wonder if its viable
on ubuntu for those looking to mitigate container security?
Thanks
More information about the libvirt-users
mailing list