Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add support for configuring audit rules from a bootstrap container #3808

Closed
Tracked by #3827
bcressey opened this issue Mar 6, 2024 · 0 comments · Fixed by #3831
Closed
Tracked by #3827

add support for configuring audit rules from a bootstrap container #3808

bcressey opened this issue Mar 6, 2024 · 0 comments · Fixed by #3831
Assignees
@bcressey
Labels
area/core Issues core to the OS (variant independent) status/in-progress This issue is currently being worked on type/enhancement New feature or request

Comments

@bcressey
Copy link
Contributor

bcressey commented Mar 6, 2024

What I'd like:
I'd like to be able to use auditctl in a bootstrap container to add additional audit rules.

This should be as easy as adding CAP_AUDIT_CONTROL to the other capabilities that bootstrap containers get.

Any alternatives you've considered:
Using a host container or daemonset, though this requires keeping a process around for a one-time node configuration task.
@bcressey bcressey added type/enhancement New feature or request status/in-progress This issue is currently being worked on area/core Issues core to the OS (variant independent) labels Mar 6, 2024
@bcressey bcressey self-assigned this Mar 6, 2024
@bcressey bcressey mentioned this issue Mar 19, 2024
Merged
@gthao313 gthao313 mentioned this issue Mar 21, 2024
Closed
7 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@bcressey bcressey

Labels
area/core Issues core to the OS (variant independent) status/in-progress This issue is currently being worked on type/enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

support configuring audit rules from bootstrap container bcressey/bottlerocket
1 participant
@bcressey