Revision f7b769b1 doc/security.rst

b/doc/security.rst
122 122

  
123 123
Under security model 'user' an instance is run as the user specified by
124 124
the hypervisor parameter 'security_domain'. This makes it easy to run
125
all instances as non privileged users, and allows to manually allocate
126
specific users to specific instances or sets of instances. If the
127
specified user doesn't have permissions a jail broken instance will need
128
some local privilege escalation before being able to take over the node
129
and the cluster. It's possible though for a jail broken instance to
125
all instances as non privileged users, and allows one to manually
126
allocate specific users to specific instances or sets of instances. If
127
the specified user doesn't have permissions a jail broken instance will
128
need some local privilege escalation before being able to take over the
129
node and the cluster. It's possible though for a jail broken instance to
130 130
affect other ones running under the same user.
131 131

  
132 132
Under security model 'pool' a global cluster-level uid pool is used to

Also available in: Unified diff