Readit News logoReadit News
Posted by u/aboutsimon 7 years ago
The end of Docker and Kubernetes?aboutsimon.com/blog/2018/...
aboutsimon commented on Kubernetes Security – Best Practice Guide   github.com/freach/kuberne... · Posted by u/aboutsimon
praving5 · 7 years ago
Have you seen CIS Kubernetes Benchmark? It has 100+ security check points.
aboutsimon · 7 years ago
Learned about them this morning, it covers almost all of my findings and more. Thanks for sharing!
aboutsimon commented on Kubernetes Security – Best Practice Guide   github.com/freach/kuberne... · Posted by u/aboutsimon
mcdan · 7 years ago
Another tool that can help here: https://github.com/aquasecurity/kube-bench
aboutsimon · 7 years ago
Super useful thanks, added it to the guide
aboutsimon commented on Kubernetes Security – Best Practice Guide   github.com/freach/kuberne... · Posted by u/aboutsimon
iooi · 7 years ago
It would help a lot to have a Why for each section. For example, why use a private topology? Why block access to the AWS Metadata API?

I'm not saying it's wrong to do those things, but it would help to prioritize changes if you can understand the severity of the security vulnerabilities you're exposed to.

aboutsimon · 7 years ago
Indeed very helpful, I created issues on Github.
Posted by u/aboutsimon 7 years ago
Kubernetes Security – Best Practice Guidegithub.com/freach/kuberne...
aboutsimon commented on Ask HN: Do you use Kubernetes in production?    · Posted by u/wawhal
aboutsimon · 7 years ago
Yes I did several projects bringing Kubernetes to production. In the cloud a little easier then on-prem. But always a real enabler for everyone working with K8s.
Posted by u/aboutsimon 7 years ago
Ask HN: How to grow, evolve a freelance business
aboutsimon commented on Ask HN: Freelancer? Seeking freelancer? (January 2017)    · Posted by u/whoishiring
aboutsimon · 9 years ago
DevOps Engineer seeking work, Remote, Area Karlsruhe/Germany

Web: https://aboutsimon.com/

My name is Simon, 32 years old with 10+ years experience in Dev and Ops combined with a battle proven stack of services to get shit done.

I'm here to assist you to tackle the challenges of the Digital Transformation. No matter if it's migrating an existing Software stack to a new System Architecture or platform, or building a new service from the ground up.

- Linux Debian/Ubuntu Server/CentOS

- CI/CD with Jenkins/Concourse, SaltStack, Docker

- Configuration Management with SaltStack

- Private Cloud with Docker, KVM

- Public Cloud AWS

- Log management on ELK Stack

- Web services on NGINX - uwsgi/unicorn/passenger/jetty

- ElasticSearch, Redis, MySQL, MongoDB, RethinkDB, etcd, OpenLDAP

- Python, Perl, JavaScript, C: +++

- Ruby, PHP, Java, Go: +

My specialty is architecting and building system and service infrastructures for "as a service" products.

LinkedIn: https://de.linkedin.com/in/simonpirschel

Web: https://aboutsimon.com/

Posted by u/aboutsimon 9 years ago
Udatetime and PyPy = ultra fast RFC3339 date-timesaboutsimon.com/blog/2016/...
Posted by u/aboutsimon 9 years ago
Show HN: Udatetime – A fast RFC3339 compliant Python date-time librarygithub.com/freach/udateti...
a

u/aboutsimon

KarmaCake day101July 29, 2016
About
https://aboutsimon.com/
View Original