You are not logged in.
There are -Z and -L options to boot an nspawn container that are selinux-related...https://man.archlinux.org/man/systemd-nspawn.1.en#Security_Options I don't see any systemd-selinux policies related to nspawn https://github.com/archlinuxhardened/se … md-selinux
The question is: what is the proper way to secure nspawn containers with SELinux on SELinux enabled Arch installations?
Hitchhacker's Guide to the Galaxy: “Nothing travels faster than the speed of light with the possible exception of bad news, which obeys its own special laws.”
If you didn't know you are backdoored, you are backdoored.
Offline
Or is running a QEMU instance with a full selinux-enabled install the only way to get an SELinux secured container at this time?
Hitchhacker's Guide to the Galaxy: “Nothing travels faster than the speed of light with the possible exception of bad news, which obeys its own special laws.”
If you didn't know you are backdoored, you are backdoored.
Offline