packages/coredns-deployment

Fork 0

mirror of https://github.com/notherealmarco/coredns-deployment.git synced 2025-03-14 14:16:16 +01:00

Commit graph

Author	SHA1	Message	Date
Nico Berlee	aba0245609	Drop unneeded capabilities, make container read-only (#76 ) * Run CoreDNS in Docker only with CAP_NET_BIND_SERVICE, drop all other (root) privileges. Run filesystem of container and config in read-only mode. * Run CoreDNS in Kubernetes only with CAP_NET_BIND_SERVICE, drop all other (root) privileges. Run filesystem of container and config in read-only mode.	2018-05-29 14:02:00 +01:00
James Mills	9a3a1a292b	Add Docker 1.12+ (service) based deployment (#9 )	2017-08-08 03:02:04 -07:00

Author

SHA1

Message

Date

Nico Berlee

aba0245609

Drop unneeded capabilities, make container read-only (#76 )

* Run CoreDNS in Docker only with CAP_NET_BIND_SERVICE, drop all other (root) privileges. Run filesystem of container and config in read-only mode.

* Run CoreDNS in Kubernetes only with CAP_NET_BIND_SERVICE, drop all other (root) privileges. Run filesystem of container and config in read-only mode.

2018-05-29 14:02:00 +01:00

James Mills

9a3a1a292b

Add Docker 1.12+ (service) based deployment (#9 )

2017-08-08 03:02:04 -07:00

2 commits