Installing Nexus on Kubernetes

Installing sonatype nexus on Kubernetes with a Persistent volume.   Prerequisites   NFS server Internet connection   Create persistent volume Make sure your NFS server is exporting the /data/k8s-pvs/pv015 directory and that all cluster nodes can reach the NFS server network wise. apiVersion: v1 kind: PersistentVolume metadata: name: nexuspv spec: capacity: storage: 100Gi volumeMode: Filesystem …

Continue reading "Installing Nexus on Kubernetes"

Kubernetes   Security Risk Assessment

Executive Summary This document describes the Risk factors, probability assessment and actions which should be taken when running an OCP environment in production. The document focuses on three main aspects: Application security risks (code), platform security risks (Kubernetes), Node security (cloud) and deployments (CD processes and containers) security risks. Risk Assessment methodology The document is …

Continue reading "Kubernetes   Security Risk Assessment"

Openshift on opennebula CNI not loading

I recently encountered a problem while deploying Openshift on Opennebula based VMs. Because Opennebula uses contextualization, it disables network manager which in turn causes problems when Openshift tries to start the SDN pods (no cni found). There were a couple of challenges  but the one that buffed me the most was the NM_CONTROLLED=no which kept …

Continue reading "Openshift on opennebula CNI not loading"