mirror of
https://github.com/aquasecurity/kube-bench.git
synced 2024-12-22 14:48:07 +00:00
mount /etc/passwd and /etc/group for etcd ownership related checks (#868)
This commit is contained in:
parent
a1bd51db99
commit
182e64753e
@ -53,6 +53,12 @@ spec:
|
||||
- name: opt-cni-bin
|
||||
mountPath: /opt/cni/bin/
|
||||
readOnly: true
|
||||
- name: etc-passwd
|
||||
mountPath: /etc/passwd
|
||||
readOnly: true
|
||||
- name: etc-group
|
||||
mountPath: /etc/group
|
||||
readOnly: true
|
||||
restartPolicy: Never
|
||||
volumes:
|
||||
- name: var-lib-etcd
|
||||
@ -88,3 +94,9 @@ spec:
|
||||
- name: opt-cni-bin
|
||||
hostPath:
|
||||
path: "/opt/cni/bin/"
|
||||
- name: etc-passwd
|
||||
hostPath:
|
||||
path: "/etc/passwd"
|
||||
- name: etc-group
|
||||
hostPath:
|
||||
path: "/etc/group"
|
||||
|
Loading…
Reference in New Issue
Block a user