October 2, 2020

Kubernetes & container security tips

Nice talk on modern K8s and container security tips by Google's Samuel Davidson:


The highlight for me: 
Using “distro-less” base images seems like a recommendation that's easy to do and would help make post-exploitation harder.

Samuel has put all his recommendations in this doc.

Other resources I've come across lately: