Builder security in Openshift 3

Solution In Progress - Updated -

Issue

  • On our Public PaaS Offering APPUiO we are going to allow to run docker and custom builders. This means during the build of those docker images some processes are going to run as root inside the builder and will also have access to the docker socket. Are there any best practices or documentation available on how we can enforce the security aspect during buildphase in our builder images on a multi tenant environment . Those builders must not have access to any persistent volume.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.