Apparently kube-vip may need to write to /proc , presumably as root and might also require privileged. It would be nice if this were conditional, to keep the security privileges limited if possible. Not clear from that issue or kube-vip/kube-vip#1218 in what situation kube-vip might need to modify rp_filter via /proc.
Apparently kube-vip may need to write to /proc , presumably as root and might also require privileged. It would be nice if this were conditional, to keep the security privileges limited if possible. Not clear from that issue or kube-vip/kube-vip#1218 in what situation kube-vip might need to modify rp_filter via /proc.