Policies are a critical foundation to successfully build and operate Kubernetes based applications. Rather than making assumptions on how workloads and applications components should work, we can define policies that will govern and enforce the way those workloads and applications components must work.
Alcide Logs and Coralogix
Ingress APIs manage external access to the services in a cluster, typically HTTP. This would generally be implemented as an API Gateway style of traffic routers that relay traffic to proxied services through a common entry point. The user would be left to control when and how to publish a service by using a declarative definition of the desired behavior (with YAML/JSON file).
The recent MiTM attack disclosed was a very unusual one in the Container Security world. All at the same time, Kubernetes, Docker, and Calico announced security bulletins related to IPv6 Rogue Router Advertisements. There are several security bulletins here because this isn’t a single vulnerability in one product - rather, multiple independent CNIs are all vulnerable. IPv6 Router Advertisements are a fairly obscure topic, yet this vulnerability is definitely worth understanding.
Welcome to the K8s Breakfast Club, our vlog series featuring conversations with inspiring peers and friends from the cloud-native ecosystem. This week, Alcide CTO and co-founder Gadi Naor is giving containers-expert and segment lead at AWS, Vipin Mohan, a call to see what’s currently happening in his container world.
Last month, the Microsoft Azure Security Center published a fully detailed Threat Matrix for Kubernetes. This article identifies attack vectors unique to a Kubernetes environment. This important contribution is derived from the more generalized MITRE ATT&CK® framework that offers a complex matrix of common attack vectors.
GitOps is a paradigm that puts Git at the heart of building and operating cloud- native applications by using Git as the single source of truth. GitOps empowers developers to perform what used to fall under IT operations. GitOps, as a development pattern, gained a fair share of popularity in recent times as it emphasizes declaratively expressing infrastructure and application configuration within Git repositories GitOps.
Spoiler: we learned about the importance of open source, creating a fantastic community, tech-first vs software that’s not vendor-driven, and more.
Welcome to the Kubernetes Breakfast Club, our new vlog series featuring conversations with some of the most inspiring peers and friends from the cloud-native ecosystem. We ask our guests very important questions like what their favorite morning dish is or what keeps them busy outside their work these days. But we also ask their opinion on open source projects, application development practices, and everything in between.