~ / tags

/tags

> all tags 1 entry

001 linux capabilities and kubernetes 2020-02-27

Linux capabilities are a mechanism to assign specific sets of privileges to processes. Container runtimes leverage Linux privilege capabilities to selectively grant elevated system permissions to as needed. Kubernetes builds on this approach to grant permissions to pods. It's turtles all the way down!