-
Type:
Improvement
-
Status: Resolved
-
Priority:
Major
-
Resolution: Fixed
-
Affects Version/s: None
-
Fix Version/s: 1.9.0
-
Component/s: containerization
-
Labels:None
-
Target Version/s:
To give security-minded operators more defense in depth, add a linux/nnp isolator that sets the no-new-privileges bit before starting the executor.
- is required by
-
MESOS-9898 Add framework control over the no-new-privileges flag.
-
- Open
-