1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
|
=head1 NAME
virt-sandbox-service execute - execute commands inside Secure container
=head1 SYNOPSIS
Execute a command within a security container
virt-sandbox-service [-c URI] execute [-h] [-N] NAME -- COMMAND [ARG1 [ARG2...]]
=head1 DESCRIPTION
virt-sandbox-service is used to manage secure sandboxed system services.
These applications will be launched via libvirt and run within a virtualization
technology such as LinuX Containers (LXC), or optionally QEMU/KVM. The
container / virtual machines will be secured by SELinux and resource
separated using cgroups.
The execute subcommand is used to execute commands within an already running container.
=head1 OPTIONS
=over 4
=item B<-h>, B<--help>
Display help message
=item B<-c> URI, B<--connect URI>
The connection URI for the hypervisor (currently only LXC URIs are
supported).
=item B<-N>, B<--noseclabel>
Execute command within the container.
=back
=head1 EXAMPLE
Execute /bin/sh in httpd1 container
# virt-sandbox-service execute httpd1 -- /bin/sh
=head1 SEE ALSO
C<libvirt(8)>, C<selinux(8)>, C<systemd(8)>, C<virt-sandbox-service(1)>
=head1 FILES
Container content will be stored in subdirectories of
/var/lib/libvirt/filesystems, by default. You can manage the
content in these directories outside of the container and
processes within the container will see the content.
=head1 AUTHORS
Daniel Walsh <dwalsh@redhat.com>
Daniel P. Berrange <dan@berrange.com>
=head1 COPYRIGHT
Copyright (C) 2011-2013 Red Hat, Inc.
=head1 LICENSE
virt-sandbox is distributed under the terms of the GNU LGPL v2+.
This is free software; see the source for copying conditions.
There is NO warranty; not even for MERCHANTABILITY or FITNESS
FOR A PARTICULAR PURPOSE
|
