Skip to content

bouheki

Examples

bouheki

HOME
Getting started
Getting started
Use Cases
Use Cases
Configuration
Configuration
- Configuration
- Network Restriction
  Network Restriction
  - Configuration
  - Examples
- File Access Restriction
  File Access Restriction
  - Configuration
  - Examples
- Mount Restriction
  Mount Restriction
  - Configuration
  - Examples Examples
    Table of contents
    
    Block mount /var/run/docker.sock to container
- DNS Proxy
Development
Development
- Setup
- Build and Test

Examples

Block mount `/var/run/docker.sock` to container

mount:
  mode: block
  target: host
  deny:
    - /var/run/docker.sock

Example

# docker run --rm -it -v /var/run/docker.sock:/var/run/docker.sock ubuntu:latest bash
docker: Error response from daemon: OCI runtime create failed: container_linux.go:380: starting container process caused: process_linux.go:545: container init caused: rootfs_linux.go:76: mounting "/var/run/docker.sock" to rootfs at "/var/run/docker.sock" caused: mount through procfd: operation not permitted: unknown.