You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@mesos.apache.org by "James Peach (JIRA)" <ji...@apache.org> on 2017/11/13 16:29:00 UTC
[jira] [Assigned] (MESOS-8214) Run a task in the root user
namespace
[ https://issues.apache.org/jira/browse/MESOS-8214?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
James Peach reassigned MESOS-8214:
----------------------------------
Assignee: James Peach
> Run a task in the root user namespace
> -------------------------------------
>
> Key: MESOS-8214
> URL: https://issues.apache.org/jira/browse/MESOS-8214
> Project: Mesos
> Issue Type: Improvement
> Components: containerization, security
> Reporter: James Peach
> Assignee: James Peach
>
> When the {{namespaces/user}} isolator is applied, we need a way for schedulers to be able to specify a task to run in the root user namespace since it might need to have real host privilege. This mechanism should be plumbed through the authorization system so the authorizer gets a chance to veto the scheduler.
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)