helm-charts icon indicating copy to clipboard operation
helm-charts copied to clipboard

Published 20 hours ago verified publisher icon prometheus-community

[prometheus-node-exporter] SELinux policy

Open garrisig opened this issue 1 year ago • 1 comments
trafficstars

Is your feature request related to a problem ?

For the prometheus-node-exporter daemonset to run on a Kubernetes cluster deployed on a SELinux enabled distro, one needs to set the SELinux type to spc_t, that seems too much privileged

Describe the solution you'd like.

I wrote a specific policy that creates a new SELinux type container_prometheus_node_exporter_t. I am willing to contribute it, but I am not sure what is the right place for it.

Describe alternatives you've considered.

Opening this issue on the container-selinux repository, but it seems to fit better here.

Additional context.

No response

garrisig avatar Sep 20 '24 09:09 garrisig