Uploaded image for project: 'Mesos'
  1. Mesos
  2. MESOS-6581

Add Seccomp support at Mesos Agent level

    XMLWordPrintableJSON

Details

    • Task
    • Status: Resolved
    • Major
    • Resolution: Duplicate
    • None
    • None
    • None
    • None

    • Linux Only

    Description

      Operator of Mesos cluster should be able to enforce a set of Seccomp rules on an Mesos Agent to defend against potential exploit attack through syscalls. When enabled, every container launched on the Agent would comply with the Seccomp filter otherwise being killed.

      Attachments

        Issue Links

          duplicates

          Epic - Created by Jira Software - do not edit or delete. Issue type for a big user story that needs to be broken down. MESOS-9029 Seccomp syscall filtering in Mesos containerizer

          • Major - Major loss of function.
          • Resolved
          relates to

          Story - Created by Jira Software - do not edit or delete. Issue type for a user story. MESOS-3277 Implement basic security isolators such as linux/apparmor or linux/seccomp

          • Major - Major loss of function.
          • Accepted

          Activity

            People

              Unassigned Unassigned
              guoger Jay Guo
              Jie Yu Jie Yu
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: