Uploaded image for project: 'OpenShift API for Data Protection'
  1. OpenShift API for Data Protection
  2. OADP-5182 Operator best practices #20: Set the the pod and containers "runAsNonRoot" to true.
  3. OADP-6133

(QE) Verify for ( Operator best practices #20: Set the the pod and containers "runAsNonRoot" to true. )

XMLWordPrintable

    • Icon: Sub-task Sub-task
    • Resolution: Done
    • Icon: Undefined Undefined
    • OADP 1.5.0
    • None
    • QE-Task
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • False
    • ToDo
    • Very Likely
    • 0
    • None
    • Unset
    • Unknown

      Description of problem:

      https://docs.google.com/spreadsheets/d/12o_xZw1O7HN4Onagx8ferGVwKjq8VL_B6FBvCKozv7A/edit?gid=474648908#gid=474648908

      See row #20

      By default OADP can be shipped such that file system backups are disabled.  The podified datamover in velero v1.15 would allow OADP-1.5.x by default to use non root containers.

      Customers would obviously be allow to turn on FSB and privledged mode.

       

       

              rhn-support-ssingla Sachin Singla
              talayan@redhat.com Tareq Alayan
              Sachin Singla Sachin Singla
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: