You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "James Peach (JIRA)" <ji...@apache.org> on 2017/11/13 16:29:00 UTC

[jira] [Assigned] (MESOS-8214) Run a task in the root user namespace

     [ https://issues.apache.org/jira/browse/MESOS-8214?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

James Peach reassigned MESOS-8214:
----------------------------------

    Assignee: James Peach

> Run a task in the root user namespace
> -------------------------------------
>
>                 Key: MESOS-8214
>                 URL: https://issues.apache.org/jira/browse/MESOS-8214
>             Project: Mesos
>          Issue Type: Improvement
>          Components: containerization, security
>            Reporter: James Peach
>            Assignee: James Peach
>
> When the {{namespaces/user}} isolator is applied, we need a way for schedulers to be able to specify a task to run in the root user namespace since it might need to have real host privilege. This mechanism should be plumbed through the authorization system so the authorizer gets a chance to veto the scheduler.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)