no-new-privileges¶
The no-new-privileges
setting prevents the container application processes
from gaining new privileges during the execution process.
For most Linux distributions, MKE supports setting no-new-privileges
to
true
in the /etc/docker/daemon.json
file. The parameter is not,
however, supported on RHEL 7.9, CentOS 7.9, Oracle Linux 7.8, and Oracle Linux
7.9.
This option is not supported on Windows. It is a Linux kernel feature.