- So while in zero drift mode if the process that you are blocking is either pid 1 or is started by pid 1 then Neuvector will not block it
- Zero drift is more permissive that basic mode! :-P
- Zero drift mode would seem to enforce more secure configurations? Do you know why it allows for more permissive actions?
- NeuVector will not block processes that are also used by Kubernetes.
- https://open-docs.neuvector.com/policy/processrules#zero-drift-process-protection
Created
February 13, 2024 18:49
-
-
Save janeczku/ada0c4e784c70359b0cc370f4e0d8b74 to your computer and use it in GitHub Desktop.
Neuvector Trickkiste
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment