kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #30541 from fenggw-fnst/update-apparmor 

[zh] Update apparmor.md
This commit is contained in:
Kubernetes Prow Robot 2021-11-18 05:43:02 -08:00 committed by GitHub
parent b96fc31dfc 2151d4e5c4
commit 2183ddad1f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
content/zh/docs/tutorials/clusters/apparmor.md
View File

@ -320,7 +320,7 @@ kubectl get events | grep hello-apparmor
我们可以通过检查该配置文件的 proc attr 来验证容器是否实际使用该配置文件运行: 我们可以通过检查该配置文件的 proc attr 来验证容器是否实际使用该配置文件运行:
```shell ```shell
kubectl exec hello-apparmor cat /proc/1/attr/current kubectl exec hello-apparmor -- cat /proc/1/attr/current
``` ```
``` ```
k8s-apparmor-example-deny-write (enforce) k8s-apparmor-example-deny-write (enforce)
@ -330,7 +330,7 @@ k8s-apparmor-example-deny-write (enforce)
最后,我们可以看到如果试图通过写入文件来违反配置文件,会发生什么情况: 最后,我们可以看到如果试图通过写入文件来违反配置文件,会发生什么情况:
```shell ```shell
kubectl exec hello-apparmor touch /tmp/test kubectl exec hello-apparmor -- touch /tmp/test
``` ```
``` ```
touch: /tmp/test: Permission denied touch: /tmp/test: Permission denied