github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
821362bd1e
kubernetes/pkg/security
History
Akihiro Suda 821362bd1e SafeSysctlWhitelist: add net.ipv4.ping_group_range 
sysctl value `net.ipv4.ping_group_range` can be used for allowing `ping`
command without `CAP_NET_RAW` capability.

e.g. `net.ipv4.ping_group_range="0 42"` to allow ping for users with
GID 0-GID 42.

This sysctl value was introduced in kernel 3.0 and has been namespaced
since its birth.

c319b4d76b (diff-5b536a7a92abed603bbb4caa61613270R57)

Signed-off-by: Akihiro Suda <akihiro.suda.cz@hco.ntt.co.jp>
2019-11-20 07:26:02 +09:00
..
apparmor fix golint failures of pkg/security/apparmor 2019-11-05 18:56:15 +08:00
podsecuritypolicy SafeSysctlWhitelist: add net.ipv4.ping_group_range 2019-11-20 07:26:02 +09:00
BUILD update BUILD files 2017-10-15 18:18:13 -07:00
doc.go Use Go canonical import paths 2016-07-16 13:48:21 -04:00