TechQA.

What is the difference between RHEL and RHCOS when it comes to Selinux. csi-driver-registrar sidecar container works without privilege access in RHEL

58 views Asked by At

On a RHEL setup, csi-driver-registrar has following securitycontext

              securityContext:
                runAsNonRoot: false
                runAsUser: 0
                privileged: false

But on RHCOS, csi socket creation fails.

SElinux strace shows permission denied. When I use privileged: true it works well.
Could someone help to understand the difference here. I am looking for an option with minimum privileges given to container for security reasons.

rhel selinux security-context registrar csi-driver
Original Q&A
0

There are 0 answers

Related Questions in RHEL

Related Questions in SELINUX

Related Questions in SECURITY-CONTEXT

Related Questions in REGISTRAR

Related Questions in CSI-DRIVER

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions