Kubernetes(k8s) Security info/notes

Tool to encrypt decrypt secrets placed in yaml files
- s5 - Safely Store Super Sensitive Stuff
  - https://maxime.visonneau.fr/post/secure_kubernetes_configuration_at_rest/
  - https://github.com/mvisonneau/s5
k8s cluster users with non admin privileges
encrypt k8s secrets saved in etc
PSP (Pod security policy)
NSP (Network security policy)
Readonly containers
Non-Root containers
Disable privilege escalation for containers