Editing Processes scope and visibility
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone.
Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 17: | Line 17: | ||
It is possible to hide other CT's processes from [[CT0]]. For this just enable kernel.pid_ns_hide_child sysctl parameter: | It is possible to hide other CT's processes from [[CT0]]. For this just enable kernel.pid_ns_hide_child sysctl parameter: | ||
− | |||
sysctl -w 'kernel.pid_ns_hide_child=1' | sysctl -w 'kernel.pid_ns_hide_child=1' | ||
− | |||
and restart all containers. To make setting permanent put into /etc/sysctl.conf following line: | and restart all containers. To make setting permanent put into /etc/sysctl.conf following line: | ||
− | |||
kernel.pid_ns_hide_child=1 | kernel.pid_ns_hide_child=1 | ||
− | |||
After this ps or htop or top will not show other container processes. | After this ps or htop or top will not show other container processes. | ||
{{Warning|If you use checkpointing and/or live migration, note they are not compatible with this feature and will stop working.}} | {{Warning|If you use checkpointing and/or live migration, note they are not compatible with this feature and will stop working.}} | ||
+ | |||
=== "Poor man's vzps in bash" === | === "Poor man's vzps in bash" === |