config/templates/alpine.common.conf.in

   1 # This derives from the global common config.
   2 lxc.include = @LXCTEMPLATECONFIG@/common.conf
   3
   4 # Doesn't support consoles in /dev/lxc/.
   5 lxc.devttydir =
   6
   7 # Drop another (potentially) harmful capabilities.
   8 lxc.cap.drop = audit_write
   9 lxc.cap.drop = ipc_owner
  10 lxc.cap.drop = mknod
  11 lxc.cap.drop = setfcap
  12 lxc.cap.drop = setpcap
  13 lxc.cap.drop = sys_nice
  14 lxc.cap.drop = sys_pacct
  15 lxc.cap.drop = sys_ptrace
  16 lxc.cap.drop = sys_rawio
  17 lxc.cap.drop = sys_resource
  18 lxc.cap.drop = sys_tty_config
  19 lxc.cap.drop = syslog
  20 lxc.cap.drop = wake_alarm