mesos-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Artem Harutyunyan (JIRA)" <j...@apache.org>
Subject [jira] [Updated] (MESOS-4937) Investigate container security options for Mesos containerizer
Date Wed, 30 Mar 2016 00:39:27 GMT

     [ https://issues.apache.org/jira/browse/MESOS-4937?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Artem Harutyunyan updated MESOS-4937:
-------------------------------------
    Sprint: Mesosphere Sprint 31, Mesosphere Sprint 32  (was: Mesosphere Sprint 31)

> Investigate container security options for Mesos containerizer
> --------------------------------------------------------------
>
>                 Key: MESOS-4937
>                 URL: https://issues.apache.org/jira/browse/MESOS-4937
>             Project: Mesos
>          Issue Type: Task
>          Components: containerization
>            Reporter: Jie Yu
>            Assignee: Jojy Varghese
>              Labels: mesosphere
>
> We should investigate the following to improve the container security for Mesos containerizer
and come up with a list of features that we want to support in MVP.
> 1) Capabilities
> 2) User namespace
> 3) Seccomp
> 4) SELinux
> 5) AppArmor
> We should investigate what other container systems are doing regarding security:
> 1) [k8s| https://github.com/kubernetes/kubernetes/blob/master/pkg/api/v1/types.go#L2905]
> 2) [docker|https://docs.docker.com/engine/security/security/]
> 3) [oci|https://github.com/opencontainers/specs/blob/master/config.md]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message