refactor AppArmor into LSM backend, add SELinux support

[mirror_lxc.git] / templates / lxc-oracle.in

diff --git a/templates/lxc-oracle.in b/templates/lxc-oracle.in
index 98ea609f0a302760664e701e3379ccb041a022b5..c0fcd307832f4be8e3a9b9d9be8e8b5bf6c892be 100644 (file)
--- a/templates/lxc-oracle.in
+++ b/templates/lxc-oracle.in
@@ -110,10 +110,8 @@ EOF
     # this file has to exist for libvirt/Virtual machine monitor to boot the container
     touch $container_rootfs/etc/mtab
 
-    # don't put devpts in here, it will already be mounted for us by lxc/libvirt
+    # don't put devpts,proc, nor sysfs in here, it will already be mounted for us by lxc/libvirt
     cat <<EOF > $container_rootfs/etc/fstab
-proc    /proc     proc   nodev,noexec,nosuid 0 0
-sysfs   /sys      sysfs  defaults 0 0
 EOF
 
     # remove module stuff for iptables it just shows errors that are not
@@ -404,9 +402,8 @@ lxc.cgroup.devices.allow = c 5:2 rwm        # /dev/ptmx pty master
 EOF
 
     cat <<EOF > $cfg_dir/fstab || die "unable to create $cfg_dir/fstab"
-proc    $container_rootfs/proc     proc   nodev,noexec,nosuid 0 0
-devpts  $container_rootfs/dev/pts  devpts defaults 0 0
-sysfs   $container_rootfs/sys      sysfs  defaults  0 0
+proc    proc     proc   nodev,noexec,nosuid 0 0
+sysfs   sys      sysfs  defaults  0 0
 EOF
 }