| kata-irc-bot | <youngha> Hey, I got a question :slightly_smiling_face: In this video (https://www.youtube.com/watch?v=4gmLXyMeYWI) 20m 37s, 1. What does 'Root-less QEMU' means? 2. Why 'Root-less QEMU' is good at container security? | 06:20 |
|---|---|---|
| *** jugs has quit IRC | 12:22 | |
| *** jugs has joined #kata-dev | 12:22 | |
| *** dklyle has quit IRC | 13:03 | |
| *** eernst has joined #kata-dev | 15:29 | |
| *** eernst has quit IRC | 15:36 | |
| *** dklyle has joined #kata-dev | 15:36 | |
| kata-irc-bot | <mvedovati> @youngha: haven't watched the video but, rootless is better because with that the runtime and the VMM (virtual machine monitor) are all running as normal user permission. So in the event a container takes control of them, then it's ability to compromise the system is limited to what a normal user can do | 18:26 |
| *** pcaruana has quit IRC | 19:36 | |
| *** eernst_ has joined #kata-dev | 22:57 | |
| *** eernst_ has quit IRC | 23:02 | |
Generated by irclog2html.py 2.15.3 by Marius Gedminas - find it at mg.pov.lt!