Details
-
Improvement
-
Status: Resolved
-
Major
-
Resolution: Fixed
-
None
-
None
Description
To give security-minded operators more defense in depth, add a linux/nnp isolator that sets the no-new-privileges bit before starting the executor.
Attachments
Issue Links
- is required by
-
MESOS-9898 Add framework control over the no-new-privileges flag.
- Open