Anomalyst writes: All the howto's document declare that openvz must have SELINUX disabled, but none of them explain why this is the case. The Audit2allow process seems to present a solution and I would feel a lot better if a virtual host tasked with running multiple guests pertaining to core functionality had SELINUX protecting it from rogue applications and users. Has anyone actually got openvz to run with SELINUX running?
...when fits of creativity run strong, more than one programmer or writer has
been known to abandon the desktop for the more spacious floor.
- Fred Brooks, Jr.