add support for configuring audit rules from a bootstrap container #3808
Labels
area/core
Issues core to the OS (variant independent)
status/in-progress
This issue is currently being worked on
type/enhancement
New feature or request
What I'd like:
I'd like to be able to use
auditctl
in a bootstrap container to add additional audit rules.This should be as easy as adding
CAP_AUDIT_CONTROL
to the other capabilities that bootstrap containers get.Any alternatives you've considered:
Using a host container or daemonset, though this requires keeping a process around for a one-time node configuration task.
The text was updated successfully, but these errors were encountered: