I am looking for some more detailed documentation of LXC Containers then the one available at https://linuxcontainers.org/#LXC
I know more or less how to create a container and start a process inside it but at some point I realized that I do not know how does this magic is working at all.
I know that the source code is the best documentation but I am looking for something simpler…
I would like to know what processes are involved while a process is started inside the container?
How a UID from a container is mapped to UID outside the container are what are the consequences of that?
Is it risky to have a process in a container with some capabilities (or “root” process)
What are namespaces/cgroups and what is it’s role in a context of lxc containers?