For my research list: [WayBack] Getting rid of Docker plain text credentials – Hacker Noon
Repository at [WayBack] GitHub – docker/docker-credential-helpers
–jeroen
Archive for the ‘Docker’ Category
Getting rid of Docker plain text credentials – Hacker Noon
Posted by jpluimers on 2020/05/29
Posted in *nix, *nix-tools, Cloud, Containers, Docker, Infrastructure, Power User | Leave a Comment »
Update NOW! CVE-2018-1002105, with root access. Kubernetes’ first major security hole discovered | ZDNet
Posted by jpluimers on 2018/12/04
From [WayBack] Kubernetes’ first major security hole discovered | ZDNet in reverse order:
Fortunately, there is a fix, but some of you aren’t going to like it. You must upgrade Kubernetes. Now. Specifically, there are patched version of Kubernetes [WayBack] v1.10.11, [WayBack] v1.11.5, [WayBack] v1.12.3, and [WayBack] v1.13.0-rc.1.
…
[WayBack] Red Hat said, “The privilege escalation flaw makes it possible for any user to gain full administrator privileges on any compute node being run in a Kubernetes pod. [WayBack] This is a big deal. Not only can this actor steal sensitive data or inject malicious code, but they can also bring down production applications and services from within an organization’s firewall.”
…
And the bug, [WayBack] CVE-2018-1002105, aka the Kubernetes privilege escalation flaw, is a doozy. It’s a [WayBack] CVSS 9.8 critical security hole.
Via [WayBack] Kubernetes’ first major security hole discovered | ZDNet – Ondrej Kelle – Google+
–jeroen
Share this:
Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User, Security | Leave a Comment »
The Illustrated Guide to Kubernetes – The Isoblog.
Posted by jpluimers on 2018/07/23
One day you will do containers.
If you want to know how k8n (Kubernetes) can help you with Docker containers, then read [WayBack] The Illustrated Guide to Kubernetes – The Isoblog. and watch the video below.
Very well explained!
Via: [WayBack] The Illustrated Children’s Guide to Kubernetes http://blog.koehntopp.info/index.php/1450-the-illustrated-guide-to-kubernetes/ You can now stop recommending it to me. – Kristian Köhntopp – Google+
–jeroen
Share this:
Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User | Leave a Comment »
Sometimes clouds vaporise: the Docker Cloud shuts down in ~8 weeks.
Posted by jpluimers on 2018/03/26
From [WayBack] Docker – Docker Cloud Migration Notification and FAQs:
The services on Docker Cloud that provide application, node, and swarm cluster management will be shutting down on May 21.
…
If you do not migrate by May 21, your applications running on the Docker node cluster management service will cease to operate.
Swarms will continue to function; however, if you do not retrieve your SSH keys for the Swarms being managed by our swarm cluster management service, you will be unable to access your swarms using your Docker ID. For instructions on how to retrieve and access your Swarms with SSH keys, please refer to the Docker docs.
So soon, no more [WayBack] Docker Cloud – Build, Ship and Run any App, Anywhere.
Remember: still the cloud is other peoples computers, so be sure you can move when needed.
–jeroen
Share this:
Posted in Cloud, Cloud Development, Containers, Development, Docker, Infrastructure, Power User | Leave a Comment »
Scott Hanselman on Witter: “Why should I care about Kubernetes, Docker, and Container Orchestration?”
Posted by jpluimers on 2018/02/08
An important question for many people, so if you want to know more or get started: [WayBack] Scott Hanselman on Twitter: “Why should I care about Kubernetes, Docker, and Container Orchestration?” followed by:
- [WayBack] Why should I care about Kubernetes, Docker, and Container Orchestration? – Scott Hanselman
- [WayBack] How to Build a Kubernetes Cluster with ARM Raspberry Pi then run .NET Core on OpenFaas – Scott Hanselman
- [WayBack] K8s on Raspbian · GitHub
- [Archive.is] Index of /raspbian_lite/images
- [Archive.is] Index of /raspbian_lite/images/raspbian_lite-2017-07-05 (the version Scott used)
- [Archive.is] Index of /raspbian_lite/images/raspbian_lite-2017-12-01 (the version I will try to use)
- [WayBack] Quickstart – Azure Kubernetes cluster for Linux | Microsoft Docs Quickly learn to create a Kubernetes cluster for Linux containers in AKS with the Azure CLI.
- [WayBack] Reasons Kubernetes is cool – Julia Evans
- [WayBack] Setting up a managed container cluster with AKS and Kubernetes in the Azure Cloud running .NET Core in minutes – Scott Hanselman
Yes, AKS is Azure Container Services (go figure!).
Notes
- For burning, Scott recommends [WayBack] Etcher: Burn images to SD cards & USB drives, safely and easily (which is now also available as experimental [WayBack] Etcher CLI), I tended to use a script like below since I’m a command-line person, but since Etcher does write and verify in one run, I’m considering switching:
- find where the SD card is mounted on your Mac:
diskutil list sudo su -- execute this from the directory where you downloaded filling in
targetDevicewith the value fromdiskutil list
targetDevice="disk9"
imageName="2017-11-29-raspbian-stretch-lite"
unzip -o ${imageName}.zip
diskutil umount "/dev/${targetDevice}s1"; \
dd bs=1m of="/dev/r${targetDevice}" if=${imageName}; \
sync; \
diskutil list; \
diskutil eject "/dev/${targetDevice}"
- find where the SD card is mounted on your Mac:
–jeroen
Share this:
Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User | Leave a Comment »
