The URL schema of the target site has changed and now returns a 404 for the old URL. This URL accommodates the new URL scheme and points to the original content.
Signed-off-by: Aaron Brooks <aaron@brooks1.net>
bubblewrap can provide a robust security boundary that severely limits
functionality, or it can provide full functionality without any attempt
at being a security boundary, or anything in between those extremes.
If a caller of bubblewrap chooses inappropriate command-line arguments
for their desired security model, then bubblewrap will not provide the
security model they are aiming for, but this is not a bubblewrap
vulnerability.
Apparently this isn't clear to everyone, so try to clarify.
The one place where bubblewrap *does* define some sort of security
policy for itself is when it's setuid root, in which case it's
responsible for preventing users from carrying out privilege escalation
attacks like CVE-2020-5291.
Resolves: https://github.com/containers/bubblewrap/issues/555
Signed-off-by: Simon McVittie <smcv@collabora.com>
Right now this link just opens a "path not found" page, so let's fix that by linking to the last commit where it existed instead.
Signed-off-by: Newbyte <newbie13xd@gmail.com>
The cat is cute, but let's not hinder adoption anywhere based on this. If
someone cares, we could probably project the Internet emergency logo into the
sky, requesting a cat picture with bubblewrap that is *also* DFSG compliant.
Closes: https://github.com/projectatomic/bubblewrap/issues/204
Closes: #206
Approved by: alexlarsson
Currently we are working on implementing rootless containers, where no
privileges are required during any part of the process of installing
runC or the management of containers. We are solving a different problem
to bubblewrap with this feature, in the hopes that users on machines
where they have no ability to create a setuid binary will be able to
still use containers.
Signed-off-by: Aleksa Sarai <asarai@suse.de>
Closes: #84
Approved by: cgwalters
Sandstorm actually requires userns today; it doesn't use a setuid helper. I adjusted the text to reflect the e-mail conversation I had with @cgwalters a few months ago.
Closes: #89
Approved by: cgwalters
Add a short explanation of the cute name, and add a cute picture
for extra credit.
Note: The url needs to be updated to point to the main repository
when this is merged.
