Lennart Poettering on Nostr: It's a boolean option: if enabled the coredump processing on the host would forward ...
It's a boolean option: if enabled the coredump processing on the host would forward the coredumps to the unit's code. The idea is that a container manager enables this on the container's unit, and this magically ensures that coredumps that happen inside the container are delivered to the container itself, and are then processed inside of it, with the container's own coredumping logic.
Security-wise this is really nice behaviour I think: to a large degree coredump handling inside…
Published at
2024-12-13 09:03:56Event JSON
{
"id": "0bf76c882520624ffb3c4f8a7ba4d7d6c993d34a117c99f24b9e4455139515c4",
"pubkey": "1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"created_at": 1734080636,
"kind": 1,
"tags": [
[
"e",
"3c28edebe237f86a289dc87d67dc32fd730254b444350339f407df11b67f3704",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://mastodon.social/users/pid_eins/statuses/113644708561501318",
"activitypub"
]
],
"content": "It's a boolean option: if enabled the coredump processing on the host would forward the coredumps to the unit's code. The idea is that a container manager enables this on the container's unit, and this magically ensures that coredumps that happen inside the container are delivered to the container itself, and are then processed inside of it, with the container's own coredumping logic.\n\nSecurity-wise this is really nice behaviour I think: to a large degree coredump handling inside…",
"sig": "79370c7445768c0483351f3d2f268d92e47e135033f0fa63784fa0d66775785ba0ac573c3d1a6c6ce13176c0670488a5b81058518813549f5d09947462e29b2d"
}
