Posts in 2018
Auditing Kubernetes for Secure Setup
Monday, June 11, 2018 in 2018
less than a minute
In summer 2018, the Gardener project team asked Kinvolk to execute several penetration tests in its role as a third-party contractor. The goal of this ongoing work is to increase the security of all Gardener stakeholders in the open source community. …
Anti Patterns
Monday, June 11, 2018 in 2018
less than a minute
Running as Root UserWhenever possible, do not run containers as root users. One could be tempted to say that in Kubernetes, the node and pods are well separated, however, the host and the container share the same kernel. If the container is …