cscott/okd-platform
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

made some naming errors. fixed

Browse Source
This commit is contained in:
Conan Scott
2026-01-13 10:06:35 +11:00
parent 9b3563ebfc
commit 8b65362c75
2 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
manifests/scc/scc-restricted-hostpath-privesc.yaml
View File

@@ -1,13 +1,13 @@
apiVersion: security.openshift.io/v1
kind: SecurityContextConstraints
metadata:
name: restricted-hostpath-privesc
name: restricted-hostpath-privesc # this scc allows hostPath and allowPrivilegeEscalation
allowHostDirVolumePlugin: true
allowHostIPC: false
allowHostNetwork: false
allowHostPID: false
allowHostPorts: false
allowPrivilegeEscalation: false
allowPrivilegeEscalation: true
allowPrivilegedContainer: false
allowedCapabilities:
- CHOWN

4
manifests/scc/scc-restricted-hostpath.yaml
View File

@@ -2,12 +2,12 @@ apiVersion: security.openshift.io/v1
kind: SecurityContextConstraints
metadata:
name: restricted-hostpath
allowHostDirVolumePlugin: true # Needed for /dev/dri hostPath
allowHostDirVolumePlugin: true #this scc allows hostPath
allowHostIPC: false
allowHostNetwork: false
allowHostPID: false
allowHostPorts: false
allowPrivilegeEscalation: true
allowPrivilegeEscalation: false
allowPrivilegedContainer: false
allowedCapabilities:
- CHOWN