Kubernetes Podcast from Google
News:Tech News
Ian Coldwater specializes in breaking and hardening Kubernetes, containers, and cloud native infrastructure. A pre-eminent voice in the Kubernetes security community, they are currently a Lead Platform Security Engineer at Heroku. Ian joins Adam and Craig to talk about the offensive and defensive arts.
Do you have something cool to share? Some questions? Let us know:
web: kubernetespodcast.com mail: kubernetespodcast@google.com twitter: @kubernetespod Chatter of the week Black Hat USA DEFCON Scavenger hunts An example of Spot the Fed An example of the Mystery Challenge News of the week Mesosphere becomes D2iQ Google Cloud launches Migrate for Anthos in Beta Google Cloud Game Servers coming soon Episode 26: Agones, with Mark Mandel and Cyril Tovena Announcing Kubernetes Summits in Seoul and Sydney Security updates of the week CVE-2019-11247: API server allows access to custom resources via wrong scope CVE-2019-11249: kubectl cp (round 3!) IBM and Red Hat: OpenShift on IBM Cloud OpenShift coming to Z Series and LinuxONE Cloud Paks and services Cisco Container Platform now supports Microsoft AKS Helm deployments at the Kubedex How Kubernetes can be used for genetic analysis by Mu Huan and Eric Li Alibaba Cloud Announcing CloudBees Jenkins X Distribution Episode 44, Continuous Delivery Foundation, with Tracy Miranda TiDB Operator now Generally Available Links from the interview Red teams and penetration testing Fuzzing Attacking Helm’s Tiller Black-box and white-box testing DevSecOps: guard rails, not gates OWASP - the Open Web Application Security Project The math behind calculating security risk CVSS score etcd: encrypt it at rest! Admission control Technologies for isolation: AppArmor Seccomp gVisor Firecracker (not yet supported with Kubernetes) “Kubernetes is powerful, and it’s insecure by design” Ian and Duffie Coolie’s BlackHat talk Cloud doesn’t make it better! Threat modelling hostpath - “a powerful escape hatch” Trail of Bits blog: understanding Docker container escapes Recommended watching: Ship of Fools by Ian Coldwater (slides) Hacking and Hardening Kubernetes by Example by Brad Geesaman (slides) A Hackers Guide to Kubernetes and the Cloud by Rory McCune (and his upcoming Black Hat training) DIY Pen Testing for your Kubernetes Cluster by Liz Rice (our guest on episode 19) Ian Coldwater on TwitterRancher Desktop, with Matt Farina
Kubernetes 1.23, with Rey Lejano
Knative 1.0, with Ville Aikas
Engineering Effectiveness and KubeCon NA 2021, with Jasmine James
Podman, with Daniel Walsh and Brent Baude
Prodfiler, with Thomas Dullien
ingress-nginx, with Alejandro de Brito Fontes and Ricardo Katz
Unicron, with Daniel Megyesi
KEDA, with Tom Kerkhove
Talos, with Andrew Rynhard
Telekom (with a K), with Vuk Gojnic
Kubernetes 1.22, with Savitha Raghunathan
Opstrace, with Sebastien Pahl
Software Supply Chain Security, with Priya Wadhwa
Gatekeeper and Policy Controller, with Max Smythe
Komodor, with Itiel Shwartz
SRE for Everyone Else, with Steve McGhee
Multi-Instance GPUs, with Kevin Klues and Pradeep Venkatachalam
Pixie, with Zain Asgar and Ishan Mukherjee
Putting on a KubeCon, with Colleen Mickey
Create your
podcast in
minutes
It is Free
gm! crypto
Big Technology Podcast
The WAN Show
Techmeme Ride Home
The 404 Media Podcast