fic/server
1
0
Fork 0
Code Issues Pull Requests 4 Releases Wiki Activity

fickit-pkg: find the minimal set of capabilities to run

Browse Source
This commit is contained in:
nemunaire 2019-01-19 23:40:42 +01:00 committed by Pierre-Olivier Mercier
parent e59e02e4fc
commit 0812fe5000
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
fickit-pkg/rsync/build.yml
View File

@ -6,6 +6,12 @@ config:
- /etc/resolv.conf:/etc/resolv.conf - /etc/resolv.conf:/etc/resolv.conf
capabilities: capabilities:
- CAP_NET_BIND_SERVICE - CAP_NET_BIND_SERVICE
- CAP_SYS_CHROOT
- CAP_SETGID
- CAP_SETUID
- CAP_KILL
- CAP_CHOWN
- CAP_FOWNER
pid: new pid: new
ipc: new ipc: new
uts: new uts: new