Hacker News new | past | comments | ask | show | jobs | submit login

Containers implement something not unlike SELinux policies. Networking stuff requires the NET_ADMIN permission, which is not set by default.



Setting up networking requires root but so does creating the container so I don't see what the problem is. Using networking doesn't require any special permissions.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: