[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Security implications of "runAsUser: type: RunAsAny"



Yes - but if you enable the experimental user namespaces feature in docker 1.9, you won't be able to run routers or admin level pods on nodes.  Until we get fixes into a Docker it's somewhat limiting.

On Nov 16, 2015, at 8:57 PM, Philippe Lafoucrière <philippe lafoucriere tech-angels com> wrote:

Hmm, I'm not talking about "privileged" containers (in the docker way), I just want to run standard containers that users can find on the docker hub, like "nginx". It doesn't have to run privileged, it's just running as root inside.
As this image does as well:
It needs to run as root to bind the port 80 (but not only).

Thanks

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]