actions-runner-kubernetes icon indicating copy to clipboard operation
actions-runner-kubernetes copied to clipboard

Published 20 hours ago verified publisher icon urcomputeringpal

Reduce privileges granted to docker container

Open jnewland opened this issue 4 years ago • 2 comments

Background

  • The docker:stable-dind-rootless container has a few requirements that aren't satisfied by all clusters today.
  • https://blog.jessfraz.com/post/building-container-images-securely-on-kubernetes/ has background on all of the rad patches that may possibly enabling running the rootless dind container without --privileged.
  • This blog post has some additional historical background.
  • This one is a bit more recent.

jnewland avatar Dec 28 '19 15:12 jnewland