Containers – TheOg's Blog

Kubernetes container security – Linux capabilities

October 13, 2020October 13, 2020

The following Linux capabilities describe how unprivileged processes (including those running in containers with a UID and GID of non-zero) these capabilities are per-thread capabilities and the allow an unprivileged process perform certain actions, pending permissions.

This document describes the different capabilities – their meaning and things to lookout for when deploying them on a production cluster.

Continue reading →

Technical Artifacts considerations K8S aspects

July 12, 2019July 16, 2019

This document aims to depict the main guidelines when producing, storing, testing and using programming products and making sure the outcome of every run on every Kubernetes cluster will be identical.

Continue reading →