Overview
Syllabus
Introduction
Cloud Native Systems
Platform Teams
Kubernetes
Control Plane
Reconciler
Containers
Container escapes
Container runtimes
Container management
SATCOM
AppArmor
Capabilities
Privileges
Username Spaces
Rootless Containers
Kubernetes Support
No Need Privileges
Authentication Rights
Default Accounts
API Access
Create Service Account
Service Account Token
Security Policies
Authorization
Blast Radius
Kubernetes Controllers
Kubernetes Emission Controller
Pod Security Policy
Controls
Create a PSP
Sidecars
Ambassadors
Consoles
Sidecar
Secrets Management
Secrets Encryption
Taught by
LASCON