zfs-localpv icon indicating copy to clipboard operation
zfs-localpv copied to clipboard

Published 20 hours ago verified publisher icon openebs

Non-privileged container

Open jackmurray opened this issue 2 years ago • 1 comments

Having had a quick look over the manifest yaml, it looks like the operator container runs in privileged mode. Are there any plans to support running without this, and instead allow running as a restricted user (with permissions granted via zfs allow)? As it stands it seems like a huge security risk to run as essentially root.

jackmurray avatar Sep 04 '22 21:09 jackmurray

We will try this out using the non privileged mode and update here

sinhaashish avatar Sep 19 '23 12:09 sinhaashish