Hello all,
I want to use CAP_SYS_TTY_CONFIG
capability in unprivileged container.
I tried adding lxc.cap.keep=sys_tty_config
in unprivileged container config, but it didn’t work.
Are capabilities dropping and keeping using lxc.cap.drop
and lxc.cap.keep
only work for privileged containers? because normal user which starts unprivileged container anyway doesn’t have all capabilities.
Are there any other ways to solve this problem?
Thanks.