Create a custom SCC and assign to users or groups
Issue
- How do I mitigate CVE-2020-14336
- The documentation says (not to modify existing SCC)[https://docs.openshift.com/container-platform/3.11/admin_guide/manage_scc.html#modify-cluster-default-behavior] to avoid modifying cluster-wide behaviour. How do I adjust the defaults in that case.
- How do I drop an existing Linux capability of only certain users, or groups pods?
Environment
OpenShift Container Platform (OCP) 3.11
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.