Welcome to the Linux Foundation Forum!

Exercise A.3 34:

Options

guettli Posts: 17

March 2022 in LFS258 Class Forum

Edit the pod such that the securityContext is in place and allows the web server to read the proper configuration files

This yaml works:

apiVersion: v1
kind: Pod
metadata:
  name: securityreview
spec:
  #securityContext:
  #  runAsUser: 2100
  containers:
  - name:  webguy
    image: nginx
    securityContext:
      # runAsUser: 3000
      allowPrivilegeEscalation: false

But again, it is unclear if this a correct answer because in my yaml the securityContext is in place, but I think the securityContext defaults to false.

BTW: This PDF in HTML is driving me crazy. If you want to copy text word often get gluedtogethersothatyouneedtoinsertspaces.

Upcoming Training

August 20, 2018
Kubernetes Administration (LFS458)
August 20, 2018
Linux System Administration (LFS301)
August 27, 2018
Open Source Virtualization (LFS462)
August 27, 2018
Linux Kernel Debugging and Security (LFD440)

Browse full catalog →

Exercise A.3 34:

Categories

Upcoming Training

Kubernetes Administration (LFS458)

Linux System Administration (LFS301)

Open Source Virtualization (LFS462)

Linux Kernel Debugging and Security (LFD440)