• CAP_AUDIT_READ fixes (not present in older kernel headers)
• Fixed dockerfile

• New config examples (e.g. Apache httpd)
• Capability adding --cap
• Improved R/O remounting (missing MS_BIND flag)
• Setting maximum number of used CPUs --max_cpus
• Accept IPv4 in --bindhost
• Use open()/fdopendir() instead of opendir() to set O_CLOEXEC atomically
• Improved docker build file

• --config option using protobuf config files
• config examples in configs/
• removed --pivot_root_only as the technique is used by default now
• flag ToStr() for clone and mount
• updated kafel/ references
• disabled TCP_CORK for incoming connections
• changed --iface to --macvlan_iface & deprecraed --iface* options

Multiple improvements

Improvements

Multiple improvements, virtual interfaces, support for -u <inside_ns>:<global_ns> uid/gid mappings (requires euid==0)

Initial release 1.0