support for host PID/IPC namespacing

shoenig / nomad-pledge-driver

Nomad task driver capable of blocking unwanted syscall and filesystem access. Based on the pledge utility for Linux by Justine Tunney

Mozilla Public License 2.0

22 stars 2 forks source link

Open shoenig opened 1 year ago

shoenig commented 1 year ago

Similar to how the exec driver exposes pid_mode and ipc_mode so that folks can disable PID or IPC namespacing, so should the pledge driver.