[jira] [Updated] (MESOS-2952) Provide user namespaces for privileged access inside containers

Paul Brett (JIRA) Mon, 06 Jul 2015 10:54:59 -0700

     [ 
https://issues.apache.org/jira/browse/MESOS-2952?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Paul Brett updated MESOS-2952:
------------------------------
    Issue Type: Epic  (was: Bug)

> Provide user namespaces for privileged access inside containers
> ---------------------------------------------------------------
>
>                 Key: MESOS-2952
>                 URL: https://issues.apache.org/jira/browse/MESOS-2952
>             Project: Mesos
>          Issue Type: Epic
>            Reporter: Paul Brett
>            Assignee: Paul Brett
>
> User namespaces allow per-namespace mappings of user and group IDs. This 
> means that a process's user and group IDs inside a user namespace can be 
> different from its IDs outside of the namespace. Most notably, a process can 
> have a nonzero user ID outside a namespace while at the same time having a 
> user ID of zero inside the namespace; in other words, the process is 
> unprivileged for operations outside the user namespace but has root 
> privileges inside the namespace.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Updated] (MESOS-2952) Provide user namespaces for privileged access inside containers

Reply via email to