Kubernetes is an open-source container-orchestration system for automating application deployment, scaling, and management. It was originally designed by Google and is now maintained by the Cloud Native Computing Foundation
Questions tagged [kubernetes]
47 questions
2
votes
1 answer
Is it a security issue to give the default service account in a namespace an imagePullSecret in Kubernetes?
I'm creating a Kubernetes deployment that needs to pull an image from a private registry.
The private registry requires credentials to authenticate to be able to pull an image, so I've added an imagePullSecret to the default service account in my…
57KOzn51JnV
- 21
- 1
1
vote
2 answers
Kubernetes Cluster Security Model
I am being forced to run my app in a Kubernetes cluster that is shared with another team. The team is not security minded. What is the same cluster security model? Will the other team be able to get root in my containers? Login to my containers?…
markgamache
- 183
- 7
1
vote
2 answers
Can an API endpoint hosted running on K8S be breached to compromise the entire cluster? Were there ever such attacks?
Can an API endpoint or a Web Application hosted on K8S exposed been breached to compromise the entire K8S cluster? Were there ever such attacks?
i.e., attacker compromises the spring boot based API with some /PUT, /POST calls which then compromises…
Nathan Aw
- 1
- 8
- 12
1
vote
2 answers
Kubenetes pod passwd
I have a simple Angular application and I deployed it on an Nginx server in a POD on a Kubernetes environment. I realised that I am now able to access the /etc/passwd file on the POD, without even having to login into the POD. Since this is the…
Prasanna K Rao
- 113
- 4