lxc:install_lxc
This is an old revision of the document!
Table of Contents
LXC - Install LXC
sudo snap install lxd
or
sudo apt-get install lxc
NOTE: The snap version will most likely be more up to date.
Get Info
lxc info
returns:
If this is your first time running LXD on this machine, you should also run: lxd init To start your first instance, try: lxc launch ubuntu:18.04
Permissions
Unprivileged containers are the safest containers.
Those use a map of uid and gid to allocate a range of uids and gids to a container.
That means that uid 0 (root) in the container is actually something like uid 100000 outside the container.
So should something go very wrong and an attacker manages to escape the container, they'll find themselves with about as many rights as a nobody user.
lxc/install_lxc.1609689095.txt.gz · Last modified: 2021/01/03 15:51 by peter