You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

681 B

security contexts

References:

What to do

  1. Create the attacker.yaml deployment
  2. Go through the https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ task

Skip the bitmasks, but try different flags in the security context and update the deployment to see what happens with various options.

Try atleast the following:

allowPrivilegeEscalation: true
privileged: true
# cd to /dev/ and see after this
readOnlyRootFilesystem: true
# try writing to / after this
runAsGroup
runAsNonRoot
runAsUser