You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@aurora.apache.org by "Steve Niemitz (JIRA)" <ji...@apache.org> on 2015/02/04 01:14:34 UTC

[jira] [Assigned] (AURORA-1057) Aurora should allow users to create "privileged" containers

     [ https://issues.apache.org/jira/browse/AURORA-1057?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Steve Niemitz reassigned AURORA-1057:
-------------------------------------

    Assignee: Steve Niemitz

> Aurora should allow users to create "privileged" containers
> -----------------------------------------------------------
>
>                 Key: AURORA-1057
>                 URL: https://issues.apache.org/jira/browse/AURORA-1057
>             Project: Aurora
>          Issue Type: Bug
>          Components: Docker
>            Reporter: Jay Buffington
>            Assignee: Steve Niemitz
>
> I'd like to allow users to set some configuration in their .aurora file which results in the "privileged" flag being set in ContainerInfo:
> https://github.com/apache/mesos/blob/master/include/mesos/mesos.proto#L1017
> If a user wants to, say, mount an NFS volume inside a container, "docker run" needs to be started in "priviledged" mode.  See https://docs.docker.com/reference/run/#runtime-privilege-linux-capabilities-and-lxc-configuration
> Like volume mount support there are security concerns here, so perhaps there needs to be a flag that allow administrators to disable this feature.
> This requires mesos 0.21+



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)