emacs/var/elfeed/db/data/cb/cb15662eaba6d3ff078df0b405de1c78fa5aa3e0


			
				
				
					
						
						
						
							
							
							<!-- SC_OFF --><div class="md"><p>Is systemd-nspawn as secure as running something in a virtual machine? If a binary doesn&#39;t exploit kernel bugs can a malicious app escape and compromise my machine? (assuming it doesn&#39;t use a kernel bug)</p> <pre><code>sudo systemd-nspawn -b -D /path/container </code></pre> <p>Currently I&#39;m using it to test apps from aur that I don&#39;t know if I want on my main machine</p> </div><!-- SC_ON --> &#32; submitted by &#32; <a href="https://www.reddit.com/user/MountainAlps582"> /u/MountainAlps582 </a> <br/> <span><a href="https://www.reddit.com/r/archlinux/comments/qymo4r/is_systemdnspawn_secure/">[link]</a></span> &#32; <span><a href="https://www.reddit.com/r/archlinux/comments/qymo4r/is_systemdnspawn_secure/">[comments]</a></span>
						
						
					
				
				
					
						Reference in a new issue
					
					View git blame
					Copy permalink