The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

  • Twitter Updates

  • My Flickr Stream

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 1,676 other followers

Archive for the ‘Kubernetes (k8n)’ Category

Update NOW! CVE-2018-1002105, with root access. ‚ÄčKubernetes’ first major security hole discovered | ZDNet

Posted by jpluimers on 2018/12/04

From [WayBack] ‚ÄčKubernetes’ first major security hole discovered | ZDNet¬†in reverse order:

Fortunately, there is a fix, but some of you aren’t going to like it. You must upgrade Kubernetes. Now. Specifically, there are patched version of Kubernetes [WayBack]¬†v1.10.11,¬† [WayBack] v1.11.5,¬†[WayBack]¬†v1.12.3, and¬†[WayBack]¬†v1.13.0-rc.1.

[WayBack] Red Hat¬†said, “The privilege escalation flaw makes it possible for any user to gain full administrator privileges on any compute node being run in a Kubernetes pod. [WayBack]¬†This is a big deal.¬†Not only can this actor steal sensitive data or inject malicious code, but they can also bring down production applications and services from within an organization’s firewall.”

And the bug, [WayBack]¬†CVE-2018-1002105, aka the Kubernetes privilege escalation flaw, is a doozy. It’s a [WayBack]¬†CVSS 9.8 critical security hole.

Via¬†[WayBack] ‚ÄčKubernetes’ first major security hole discovered | ZDNet – Ondrej Kelle – Google+

–jeroen

Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User, Security | Leave a Comment »

The Illustrated Guide to Kubernetes ‚Äď The Isoblog.

Posted by jpluimers on 2018/07/23

One day you will do containers.

If you want to know how k8n (Kubernetes) can help you with Docker containers, then read¬†[WayBack]¬†The Illustrated Guide to Kubernetes ‚Äď The Isoblog.¬†and watch the video below.

Very well explained!

Via:¬†[WayBack] The Illustrated Children’s Guide to Kubernetes http://blog.koehntopp.info/index.php/1450-the-illustrated-guide-to-kubernetes/ You can now stop recommending it to me. – Kristian K√∂hntopp – Google+

 

–jeroen

Read the rest of this entry »

Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User | Leave a Comment »

Scott Hanselman on Witter: “Why should I care about Kubernetes, Docker, and Container Orchestration?”

Posted by jpluimers on 2018/02/08

An important question for many people, so if you want to know more or get started: [WayBack] Scott Hanselman on Twitter: “Why should I care about Kubernetes, Docker, and Container Orchestration?”¬†followed by:

Yes, AKS is Azure Container Services (go figure!).

Notes

  • For burning, Scott recommends [WayBack] Etcher:¬†Burn images to SD cards & USB drives, safely and easily (which is now also available as experimental [WayBack]¬†Etcher CLI), I tended to use a script like below since I’m a command-line person, but since Etcher does write and verify in one run, I’m considering switching:
    1. find where the SD card is mounted on your Mac: diskutil list
    2. sudo su -
    3. execute this from the directory where you downloaded filling in targetDevice with the value from diskutil list

    targetDevice="disk9"
    imageName="2017-11-29-raspbian-stretch-lite"
    unzip -o ${imageName}.zip
    diskutil umount "/dev/${targetDevice}s1"; \
    dd bs=1m of="/dev/r${targetDevice}" if=${imageName}; \
    sync; \
    diskutil list; \
    diskutil eject "/dev/${targetDevice}"

–jeroen

Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n), Power User | Leave a Comment »

jessie frazelle on Twitter: “Hire the people who will automate themselves out of a job, then just keep giving them jobs.”

Posted by jpluimers on 2017/12/31

This is what DevOps is all about: [WayBack]¬†jessie frazelle on Twitter: “Hire the people who will automate themselves out of a job, then just keep giving them jobs.”

I had seen the tweet before, but forgot to save it. Jonas Bandi reminded me of it at¬†[WayBack]¬†Weekend Reader: End of Year Edition ‚Äď reality-loop.

Jessie is doing great work. For instance, she developed and published contained.af, and nobody captured the flag yet:¬†[WayBack] jessie frazelle on Twitter: ¬ęA year ago I made contained.af and it’s launched over 128,000 containers & no one has retrieved the flag¬Ľ.

The game runs in a container, gives you console access and has a bunch of questions. Still need to dig deeper in it, as it is a fascinating set-up. If you like to try it:

Wishing you a year where nobody captures your flags (:

–jeroen

via¬†[WayBack] I just published my ‚ÄúWeekend Reader: End of Year Edition‚ÄĚ – Jonas Bandi – Google+

Read the rest of this entry »

Posted in Agile, Cloud, Containers, Development, DevOps, Docker, Infrastructure, Kubernetes (k8n), LifeHacker, Power User, Software Development | Leave a Comment »

On the Docker-Kubernetes announcement: if Kubernetes does so much, do you still use Docker?

Posted by jpluimers on 2017/12/03

Must read: [WayBack] Some Thoughts on the Docker-Kubernetes Announcement – Scott’s Weblog – The weblog of an IT pro specializing in cloud computing, virtualization, and networking, all with an open source view

Via a thread with great comments: [WayBack] Two weeks ago, Scott Lowe mused about the Docker-Kubernetes announcement. https://blog.scottlowe.org/2017/10/17/some-thoughts-on-docker-kubernetes-anno… – Kristian K√∂hntopp – Google+

–jeroen

Posted in Cloud, Containers, Docker, Infrastructure, Kubernetes (k8n) | Leave a Comment »

 
%d bloggers like this: