File tree Expand file tree Collapse file tree 2 files changed +4
-0
lines changed Expand file tree Collapse file tree 2 files changed +4
-0
lines changed Original file line number Diff line number Diff line change @@ -72,6 +72,8 @@ sudo -E env PATH=$PATH setpriv \
7272 --reuid=$(id -u) \
7373 --regid=$(id -g) \
7474 --clear-groups \
75+ # Note: sys_admin is only needed in restricted environments (e.g., Docker with seccomp).
76+ # If boundary works without it on your system, you can remove +sys_admin from both flags.
7577 --inh-caps=+net_admin,+sys_admin \
7678 --ambient-caps=+net_admin,+sys_admin \
7779 boundary --allow "domain=github.com" -- curl https://github.com
Original file line number Diff line number Diff line change @@ -20,6 +20,8 @@ if [ "$(id -u)" -eq 0 ]; then
2020fi
2121
2222# Run boundary with proper privilege handling
23+ # Note: sys_admin is only needed in restricted environments (e.g., Docker with seccomp).
24+ # If boundary works without it on your system, you can remove +sys_admin from both flags.
2325exec sudo -E env PATH=" $PATH "
2426 --reuid=" $( id -u) "
2527 --regid=" $( id -g) "
You can’t perform that action at this time.
0 commit comments