You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
--stdin: Forward stdin of x11docker to image command.
--showpid1: Echo host PID of container PID 1 on stdout.
Changed
--security-opt=no-new-privileges for init systems and --dbus-system.
Now default for all options except --sudouser and --cap-default.
--dbus-system and init system options: Run all except a few dbus
system services manually and show security warning message. Manual
start needed due to no-new-privileges, polkit setuid helper fails.
Minimize or delete /etc/pam.d/su and delete /etc/pam.d/sudo.
Avoids security leak that would allow switching to root in container
if PAM configuration allows it and capabilities for su are given.
Remove /bin/sh -c from extracted CMD image command.
Regard WORKDIR in image, use it instead of HOME. (#45)
Logfile handling with fifo/named pipe.
--auto: Tightened dependency check.
Improved process watching using less resources. Faster shutdown.
x11docker-gui: New structure using tabs.
Some code cleanup.
Fixed
Don't set -title in Xephyr command. Xephyr bug: Releasing keyboard
and mouse after grab (ctrl+shift) does not work with -title. (#44)
--nxagent: Fixed keyboard layout issue, don't use setxkbmap.
--nxagent: Regard --keymap.
--nxagent: Removed extension Composite, caused some issues.
--exe: Don't pass file descriptors to host executeable.
--wayland Works with prissy GTK3 applications (e.g. xfce4-terminal) again,
needed user switching in --dbus-system for unknown reasons.
--showid failed with sudo due to missing file descriptors. Using mkfifo now.
Don't forward stdin as default, can cause trouble if empty. use --stdin instead.
