made some naming errors. fixed

fixed the name of restricted-hostpath
2026-01-13 10:06:35 +11:00 · 2026-01-13 10:04:28 +11:00
2 changed files with 5 additions and 5 deletions
--- a/manifests/scc/scc-restricted-hostpath-privesc.yaml
+++ b/manifests/scc/scc-restricted-hostpath-privesc.yaml
@@ -1,13 +1,13 @@
 apiVersion: security.openshift.io/v1
 kind: SecurityContextConstraints
 metadata:
-  name: restricted-hostpath-privesc
+  name: restricted-hostpath-privesc # this scc allows hostPath and allowPrivilegeEscalation
 allowHostDirVolumePlugin: true
 allowHostIPC: false
 allowHostNetwork: false
 allowHostPID: false
 allowHostPorts: false
-allowPrivilegeEscalation: false
+allowPrivilegeEscalation: true
 allowPrivilegedContainer: false
 allowedCapabilities:
  - CHOWN
--- a/manifests/scc/scc-restricted-hostpath.yaml
+++ b/manifests/scc/scc-restricted-hostpath.yaml
@@ -1,13 +1,13 @@
 apiVersion: security.openshift.io/v1
 kind: SecurityContextConstraints
 metadata:
-  name: restricted-hostpath-privesc
+  name: restricted-hostpath
-allowHostDirVolumePlugin: true # Needed for /dev/dri hostPath
+allowHostDirVolumePlugin: true #this scc allows hostPath
 allowHostIPC: false
 allowHostNetwork: false
 allowHostPID: false
 allowHostPorts: false
-allowPrivilegeEscalation: true
+allowPrivilegeEscalation: false
 allowPrivilegedContainer: false
 allowedCapabilities:
  - CHOWN
Author	SHA1	Message	Date
Conan Scott	8b65362c75	made some naming errors. fixed	2026-01-13 10:06:35 +11:00
Conan Scott	9b3563ebfc	fixed the name of restricted-hostpath	2026-01-13 10:04:28 +11:00