Upgrade to Pro — share decks privately, control downloads, hide ads and more …

security-profiles-operatorをさわってみた / try-security-profiles-operator

Naoki Oketani
November 25, 2021

security-profiles-operatorをさわってみた / try-security-profiles-operator

Naoki Oketani

November 25, 2021
Tweet

More Decks by Naoki Oketani

Other Decks in Technology

Transcript

  1. 参考資料 Docker/Kubernetes開発・運用のためのセキュリティ実践ガイド https://book.mynavi.jp/ec/products/detail/id=114099 Hacking Kubernetes https://www.oreilly.com/library/view/hacking-kubernetes/9781492081722/ Restrict a Container's Syscalls

    with seccomp https://kubernetes.io/docs/tutorials/clusters/seccomp/ Restrict a Container's Access to Resources with AppArmor https://kubernetes.io/docs/tutorials/clusters/apparmor/ Kubernetes Security Profiles Operator https://github.com/kubernetes-sigs/security-profiles-operator Managing Kubernetes seccomp profiles with security profiles operator https://medium.com/@LachlanEvenson/managing-kubernetes-seccomp-profiles-with-security-profiles-operator-c768cff58b0