[jira] [Created] (MESOS-4937) Investigate container security options for Mesos containerizer

Jie Yu (JIRA) Mon, 14 Mar 2016 10:18:58 -0700

Jie Yu created MESOS-4937:
-----------------------------

             Summary: Investigate container security options for Mesos 
containerizer
                 Key: MESOS-4937
                 URL: https://issues.apache.org/jira/browse/MESOS-4937
             Project: Mesos
          Issue Type: Task
            Reporter: Jie Yu



We should investigate the following to improve the container security for Mesos 
containerizer and come up with a list of features that we want to support in 
MVP.

1) Capabilities
2) User namespace
3) Seccomp
4) SELinux
5) AppArmor

We should investigate what other container systems are doing regarding security:
1) [k8s| 
https://github.com/kubernetes/kubernetes/blob/master/pkg/api/v1/types.go#L2905]
2) [docker|https://docs.docker.com/engine/security/security/]
3) [oci|https://github.com/opencontainers/specs/blob/master/config.md]



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

[jira] [Created] (MESOS-4937) Investigate container security options for Mesos containerizer

Reply via email to