kubernetes
/
website
mirror of https://github.com/kubernetes/website.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update apparmor.md 

Due to exec command DEPRECATED. so please add `--` to avoid info message. 

`Current`
```
root@wk8s-m:~# kubectl exec hello-apparmor cat /proc/1/attr/current
kubectl exec [POD] [COMMAND] is DEPRECATED and will be removed in a future version. Use kubectl exec [POD] -- [COMMAND] instead.
k8s-apparmor-example-deny-write (enforce)
``` 

```
root@wk8s-m:~# kubectl exec hello-apparmor touch /tmp/test
kubectl exec [POD] [COMMAND] is DEPRECATED and will be removed in a future version. Use kubectl exec [POD] -- [COMMAND] instead.
touch: /tmp/test: Permission denied
command terminated with exit code 1
```

`Change`
```
root@wk8s-m:~# kubectl exec hello-apparmor -- cat /proc/1/attr/current
k8s-apparmor-example-deny-write (enforce)
```

```
root@wk8s-m:~# kubectl exec hello-apparmor -- touch /tmp/test
touch: /tmp/test: Permission denied
command terminated with exit code 1
```
This commit is contained in:
Hoon Jo 2021-11-11 16:02:04 +09:00 committed by GitHub
parent 53f7612552
commit 9ac60ec13d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
content/en/docs/tutorials/clusters/apparmor.md
View File

@ -233,7 +233,7 @@ kubectl get events | grep hello-apparmor
We can verify that the container is actually running with that profile by checking its proc attr:
```shell
kubectl exec hello-apparmor cat /proc/1/attr/current
kubectl exec hello-apparmor -- cat /proc/1/attr/current
```
```
k8s-apparmor-example-deny-write (enforce)
@ -242,7 +242,7 @@ k8s-apparmor-example-deny-write (enforce)
Finally, we can see what happens if we try to violate the profile by writing to a file:
```shell
kubectl exec hello-apparmor touch /tmp/test
kubectl exec hello-apparmor -- touch /tmp/test
```
```
touch: /tmp/test: Permission denied