mirror of
https://github.com/Ponce/slackbuilds
synced 2024-10-05 23:07:14 +02:00
9 lines
350 B
Text
9 lines
350 B
Text
|
Bubblewrap
|
||
|
|
||
|
Many container runtime tools like systemd-nspawn, docker, etc. focus on
|
||
|
providing infrastructure for system administrators and orchestration tools
|
||
|
(e.g. Kubernetes) to run containers.
|
||
|
|
||
|
These tools are not suitable to give to unprivileged users, because it is
|
||
|
trivial to turn such access into to a fully privileged root shell on the host.
|