= Kubernetes(k8s) Security info/notes =

 1. Tool to encrypt decrypt secrets placed in yaml files
   * s5 - Safely Store Super Sensitive Stuff
     * https://maxime.visonneau.fr/post/secure_kubernetes_configuration_at_rest/
     * https://github.com/mvisonneau/s5

 1. k8s cluster users with non admin privileges

 1. encrypt k8s secrets saved in etc

 1. PSP (Pod security policy)

 1. NSP (Network security policy)

 1. Readonly containers

 1. Non-Root containers

 1. Disable privilege escalation for containers
----
CategoryK8sKubernetes