Chapter 6. sVirt and Docker Support
More and more system tools have built-in support for SELinux or use SELinux's features to further harden their own service offerings. When we look at virtualization, two open source projects will definitely come to mind: libvirt and Docker. While the former supports full virtualization, the latter focuses on container management. In this chapter, administrators will:
- Learn how SELinux can help reduce the risks of virtualization
- Understand how SELinux's policy is tuned to support these services
- Deal with the secure virtualization option supported through the libvirt API
We'll end the chapter with a section on Securing Docker containers with SELinux.
SELinux-secured virtualization
Virtualization is part of many infrastructural ...
Get SELinux System Administration - Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
