You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@mesos.apache.org by "James Findley (JIRA)" <ji...@apache.org> on 2015/10/21 14:08:27 UTC

[jira] [Created] (MESOS-3776) Support SELinux docker volume modes

James Findley created MESOS-3776:
------------------------------------

             Summary: Support SELinux docker volume modes
                 Key: MESOS-3776
                 URL: https://issues.apache.org/jira/browse/MESOS-3776
             Project: Mesos
          Issue Type: Bug
          Components: docker
            Reporter: James Findley
            Priority: Minor


Since docker 1.7, two additional volume modes are supported on top of 'ro' and 'rw': 'z' and 'Z'. These set the SELinux mode of the volume to be accessible from every container or just this container, respectively.

See http://www.projectatomic.io/blog/2015/06/using-volumes-with-docker-can-cause-problems-with-selinux/ for more info on this.

It would be great if mesos were to support these volume modes for better container security.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)