Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-145324

[RFE] Ways to block a registry at podman level

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Normal Normal
    • None
    • rhel-8.10
    • podman
    • None
    • Low
    • rhel-container-tools
    • 3
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      • Customer wants podman to allow only a set of registries and block the rest. The current method used is to create a policy.json file under /etc/containers and specify the registries.
      • However, creating another policy.json inside any rootless user's home directory overrides the one under /etc.
      • We suggested the customer to create immutable policy.json owned by root under the home directories of rootless users but the customer environment prohibits from doing it
      • We are now looking for alternate options as a feature request to achieve this

              ddarrah@redhat.com David Darrah
              rhn-support-vraghave Vignesh Raghavendran
              Container Runtime Eng Bot Container Runtime Eng Bot
              Container Runtime Bugs Bot Container Runtime Bugs Bot
              Votes:
              1 Vote for this issue
              Watchers:
              11 Start watching this issue

                Created:
                Updated: