← Back to context Comment by concerndc1tizen 19 days ago Which privileges are required? CAP_NET_ADMIN? Or nothing at all? 2 comments concerndc1tizen Reply alexflint 19 days ago Nothing at all!You do need write access to /dev/net/tun. This is standard for all users for the distros that I've looked into, but it is ultimately a distro-specific thing. concerndc1tizen 18 days ago I'm curious because in a Kubernetes environment, the privileges can be minimal, i.e. read only filesystem, running as nobody, empty filesystem, etc.
alexflint 19 days ago Nothing at all!You do need write access to /dev/net/tun. This is standard for all users for the distros that I've looked into, but it is ultimately a distro-specific thing. concerndc1tizen 18 days ago I'm curious because in a Kubernetes environment, the privileges can be minimal, i.e. read only filesystem, running as nobody, empty filesystem, etc.
concerndc1tizen 18 days ago I'm curious because in a Kubernetes environment, the privileges can be minimal, i.e. read only filesystem, running as nobody, empty filesystem, etc.
Nothing at all!
You do need write access to /dev/net/tun. This is standard for all users for the distros that I've looked into, but it is ultimately a distro-specific thing.
I'm curious because in a Kubernetes environment, the privileges can be minimal, i.e. read only filesystem, running as nobody, empty filesystem, etc.