⇤ ← Revision 1 as of 2020-02-19 00:47:24
568
Comment:
|
← Revision 2 as of 2020-02-19 00:48:46 ⇥
565
|
Deletions are marked like this. | Additions are marked like this. |
Line 3: | Line 3: |
1. Tool to encrypt decrypt secrets placed in yaml files == | 1. Tool to encrypt decrypt secrets placed in yaml files |
Kubernetes(k8s) Security info/notes
- Tool to encrypt decrypt secrets placed in yaml files
- s5 - Safely Store Super Sensitive Stuff
- k8s cluster users with non admin privileges
- encrypt k8s secrets saved in etc
- PSP (Pod security policy)
- NSP (Network security policy)
- Readonly containers
- Non-Root containers
- Disable privilege escalation for containers