shaba/systemd
1
0
Fork 0
mirror of https://github.com/systemd/systemd.git synced 2025-01-26 14:04:03 +03:00
Code

man: document that the kernel's audit subsystem is currently incompatible with nspawn containers

Browse Source
This commit is contained in:
Lennart Poettering 2013-05-09 15:32:27 +02:00
parent b62ee5249d
commit 2aba426ffb
1 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
man/systemd-nspawn.xml
View File

@ -142,6 +142,16 @@
might be necessary to add this file to the container might be necessary to add this file to the container
tree manually if the OS of the container is too old to tree manually if the OS of the container is too old to
contain this file out-of-the-box.</para> contain this file out-of-the-box.</para>
<para>Note that the kernel auditing subsystem is
currently broken when used together with
containers. We hence recommend turning it off entirely
when using <command>systemd-nspawn</command> by
booting with <literal>audit=0</literal> on the kernel
command line, or by turning it off at kernel build
time. If auditing is enabled in the kernel operating
systems booted in an nspawn container might refuse
log-in attempts.</para>
</refsect1> </refsect1>
<refsect1> <refsect1>