Anomalyst writes: All the howto's document declare that openvz must have SELINUX disabled, but none of them explain why this is the case. The Audit2allow process seems to present a solution and I would feel a lot better if a virtual host tasked with running multiple guests pertaining to core functionality had SELINUX protecting it from rogue applications and users. Has anyone actually got openvz to run with SELINUX running?
This is the theory that Jack built.
This is the flaw that lay in the theory that Jack built.
This is the palpable verbal haze that hid the flaw that lay in...