Admission Controllers - One Part of Your Kubernetes Security and Governance Toolkit
CNCF [Cloud Native Computing Foundation] via YouTube
AI, Data Science & Cloud Certificates from Google, IBM & Meta
Get 20% off all career paths from fullstack to AI
Overview
Syllabus
Intro
Kubernetes common attack vectors
Kubernetes Mitigations and Controls
Rego Language: The Basics
Security Integration Points
Kubernetes Security Best Practices
Enforce a Trusted Registry
Don't allow 'dev', 'latest', or 'master' image tags in prod
Prevent Privileged Pods
Prevent sensitive host system mounts
Make the container filesystem read only
Prevent NodePort Services
Resources Example Policies
Taught by
CNCF [Cloud Native Computing Foundation]