Skip to content

Instantly share code, notes, and snippets.

View jmccormick2001's full-sized avatar

Jeff McCormick jmccormick2001

  • Boerne, TX
View GitHub Profile
@jmccormick2001
jmccormick2001 / chcon denial policy
Created July 27, 2015 21:53
cat /tmp/chcon_denial | audit2allow
[root@origin ~]# cat /tmp/chcon_denial | audit2allow
#============= unconfined_t ==============
allow unconfined_t svirt_lxc_net_t:file relabelfrom;
@jmccormick2001
jmccormick2001 / gist:b1962745cfb8f67dedcc
Created July 24, 2015 17:59
oc edit privileged output
# Please edit the object below. Lines beginning with a '#' will be ignored,
# and an empty file will abort the edit. If an error occurs while saving this fi
le will be
# reopened with the relevant failures.
#
allowHostDirVolumePlugin: true
allowPrivilegedContainer: true
allowedCapabilities:
- FOWNER
- CHOWN