DiscoverKubeFMAbusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik
Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

Update: 2024-08-27
Share

Description

In this KubeFM episode, Harsha explores the intricacies of Kubernetes security, focusing on the benefits and misconceptions of Distroless container images and the broader aspects of container security.

You will learn:

  • The advantages and limitations of Distroless container images: understand why these images are smaller, have a reduced attack surface and are not inherently secure.

  • Best practices for container security: gain insights into selecting base images, managing dependencies, and fortifying your infrastructure at every layer.

  • Supply chain security: explore how the supply chain can be an attack vector and the importance of signing artifacts and validating sources.

  • Emerging Kubernetes tools and future projects: discover the latest tools Harsha is monitoring and get a sneak peek into his upcoming projects, including a new podcast and a tool for simulating multistage attacks in cloud-native environments.

Sponsor

This episode is sponsored by Learnk8s — estimate the perfect cluster node with the Kubernetes Instance Calculator

More info

Comments 
Top Podcasts
The Best New Comedy Podcast Right Now – June 2024The Best News Podcast Right Now – June 2024The Best New Business Podcast Right Now – June 2024The Best New Sports Podcast Right Now – June 2024The Best New True Crime Podcast Right Now – June 2024The Best New Joe Rogan Experience Podcast Right Now – June 20The Best New Dan Bongino Show Podcast Right Now – June 20The Best New Mark Levin Podcast – June 2024
In Channel
The hater's guide to Kubernetes, with Paul Butler

The hater's guide to Kubernetes, with Paul Butler

2024-11-1243:25

Kubernetes webhooks explained and Aspect Oriented Programming, with Gordon Myers

Kubernetes webhooks explained and Aspect Oriented Programming, with Gordon Myers

2024-11-0526:29

98% faster data imports in deployment previews, with Nick Nikitas

98% faster data imports in deployment previews, with Nick Nikitas

2024-10-2919:04

When Kubernetes and Go don't work well together, with Emin Laletović

When Kubernetes and Go don't work well together, with Emin Laletović

2024-10-2225:56

Declarative configuration and the Kubernetes Resource Model, with Brian Grant

Declarative configuration and the Kubernetes Resource Model, with Brian Grant

2024-10-1552:30

Comparing GitOps: Argo CD vs Flux CD, with Andrei Kvapil

Comparing GitOps: Argo CD vs Flux CD, with Andrei Kvapil

2024-10-0830:37

Kubernetes is simple: it's just Linux, with Eric Jalal

Kubernetes is simple: it's just Linux, with Eric Jalal

2024-10-0148:50

Configuring requests & limits with the HPA at scale, with Alexandre Souza

Configuring requests & limits with the HPA at scale, with Alexandre Souza

2024-09-2452:43

Tortoise: outpacing the optimization challenges in Kubernetes, with Kensei Nakada

Tortoise: outpacing the optimization challenges in Kubernetes, with Kensei Nakada

2024-09-1758:49

How we are managing a container platform with Kubernetes, with Ángel Barrera Sánchez

How we are managing a container platform with Kubernetes, with Ángel Barrera Sánchez

2024-09-1049:02

The basics of observing Kubernetes: a bird-watcher's perspective, with Miguel Luna

The basics of observing Kubernetes: a bird-watcher's perspective, with Miguel Luna

2024-09-0342:38

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

2024-08-2731:22

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

The ticking supply chain attack bomb of exposed Kubernetes secrets, with Assaf Morag and Yakir Kadkoda

2024-06-1850:40

From 0 to 10k builds a week with self-hosted Jenkins on Kubernetes, with Stéphane Goetz

From 0 to 10k builds a week with self-hosted Jenkins on Kubernetes, with Stéphane Goetz

2024-06-1148:06

Platform engineering: learning from the Kubernetes API, with Sven Hans Knecht

Platform engineering: learning from the Kubernetes API, with Sven Hans Knecht

2024-06-0455:30

Hacking Alibaba Cloud's Kubernetes cluster, with Ronen Shustin and Hillai Ben-Sasson

Hacking Alibaba Cloud's Kubernetes cluster, with Ronen Shustin and Hillai Ben-Sasson

2024-05-2844:26

CoreDNS will fail you at scale (with default settings), with Mohamed Hamdan Faris S M

CoreDNS will fail you at scale (with default settings), with Mohamed Hamdan Faris S M

2024-05-2134:50

The best operating system for Kubernetes, with Mircea-Pavel Anton

The best operating system for Kubernetes, with Mircea-Pavel Anton

2024-05-1439:58

Observability will speed up your Kubernetes troubleshooting, with Jennifer Luther Thomas

Observability will speed up your Kubernetes troubleshooting, with Jennifer Luther Thomas

2024-05-07--:--

The good, the bad and the ugly of templating YAML in Kubernetes, with Alexander Block

The good, the bad and the ugly of templating YAML in Kubernetes, with Alexander Block

2024-04-3036:20

loading
Google Play
Download from Google Play
Castbox
Download from App Store
usUnited States
00:00
00:00
x

0.5x

0.8x

1.0x

1.25x

1.5x

2.0x

3.0x

Sleep Timer

Off

End of Episode

5 Minutes

10 Minutes

15 Minutes

30 Minutes

45 Minutes

60 Minutes

120 Minutes

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik

Abusing Distroless containers: shell commands on shell-less containers, with Harsha Koushik