Investigating cluster security
Taking Kubernetes out of the equation, let’s think about overall infrastructure and/or cloud security. At a high level, you have the network, the servers, the connections to the servers, user access, and ensuring that the applications installed on the servers are secure. In the world of cloud computing, you don’t have to worry about the physical security aspect. But if your clusters are in a data center, you do have to think about physical security. Locks on the data center rack cages ensure that no one can plug in any old USB key and that no one can literally take a server out of the rack and walk away with it.
Server security is a combination of what’s running inside and on the server—the applications running, programs that are being executed, and the overall operating system itself. Let’s say, for example, you’re running an older version of Ubuntu. Chances are you should absolutely check and confirm that...
