SECURE KUBERNETES LIKE A PRO | HOW DEVSECOPS ENGINEERS SECURE Kubernetes ?
Vložit
- čas přidán 5. 07. 2024
- Support my work
www.buymeacoffee.com/abhishekprd Security is a journey.
Security is a very very important aspect of DevSecOps. One should definitely know how to secure their Kubernetes clusters. If not, the clusters will be compromised and sensitive information will be leaked and application can be hacked. Are you an aspiring DevSecOps engineer ? Do you want to learn how to secure your Kubernetes clusters like a Pro ? Watch the video till the end.
Instagram: / abhishekveeramalla_off...
Video Notes in GitHub
github.com/iam-veeramalla/Kub...
FREE DEVOPS COURSE
• DEVOPS ZERO TO HERO CO...
Telegram channel
telegram.me/abhishekveeramalla
About me:
-----------------
LinkedIn: / abhishek-veeramalla-77...
GitHub: github.com/iam-veeramalla
Medium: / abhishekveeramalla-av
CZcams: / @abhishekveeramalla .
.
Disclaimer: Unauthorized copying, reproduction, or distribution of this video content, in whole or in part, is strictly prohibited. Any attempt to upload, share, or use this content for commercial or non-commercial purposes without explicit permission from the owner will be subject to legal action. All rights reserved. - Zábava
Thanks!
Thanks for supporting the channel 😍
you have so muck knowlegde and patience to explain all concept so nicely
The best one best this space thanks a million sir ❤
Great efforts abhishek👏👏
Each & every video of u making the devops/Kubernetes learning journey simple & interesting.
Thanks once again.
😍
Fantastic session bro.
@Abhishek, Thanks a lot for your video on most awaited topic
Welcome
East are West abhishek anna is best 😊
Haha
So true anna
thank you anna my day finishes with your videos......
😍
beautiful explanation sir....... thank you so much....👌👌👌👌👌
❤️
Abhishek, you're great!!! I have taken full DevOps classes but never understood a lot until I started following you! I came into Devops with a little IT background as a data analyst.
Thank a lot!!!
Can you do a short video to explain various web applications( Nginx, apache tomcat, etc) and how often DevOps Engineer encounter them..and other applications that DevOps Engineers most often deploy. Please 🙏...
Thanks and noted
Hi Abhishek, is it possible to make hands on in this video? Bcz usually in EKS we won’t be maintaining control plane right so how to implement security for eks clusters?
Thank you for all the contents
Welcome
Would like to add few security aspects which I have been using so hope others can also take them into consideration:
1. Applying k8s policies using KYVERNO to restrict security policies in k8s resources.
2. Using Manifest/Helm scanners tools like CHECKOV or DATREE to avoid any misconfigurations or vulnerabilities in them.
3. Using cluster scanners or RBAC Visulizers like KUBESCAPE.
4. Using Docker image signing and attestation tool like COSIGN.
5. Following CIS benchmarks for K8s or Cloud on which k8s hosted.
6. Securing Ingress using TLS.
7. Secrets Encryption using sealed secrets or external secret operator.
8. Using Distroless images for building containers.
1st point is covered in latest video
Will do others soon. Thanks for sharing Gourav
Its very quality & valuable content brother😊
😍
Informative..!!👍
😍
Hello Abhishek. Thank you so much….really hat’s off you for such an amazing content with easily understandable language & your dedication🤩🤩🤩
If possible please make more such videos on Security / DevSecOps related topics.
Thanks a lot 🤩🤩🤩
😍
Papa you are giving such gifts that i can't even explain.. Thank you ❤
😍
Yeah Abhishek bro is the best ❤❤
😍
If I am using AKS, then is the API server is already secured since master node is managed by Azure or it is not required?
Thanks
Thanks for contributing to the channel
Thank you
Welcome
Great videos Abhishek!
Can you plz make videos on how to handle volume in kubernetes?
Noted
Abhisek your content is great and the way you teach is really superb. only one correction, I guess the image scan command is docker snyk not docker synk if I am correct. please correct me if I am wrong
U r correct .. sorry for the typo and mispronunciation
@Abhishek, thanks for this detailed lecture. I need clarification on securing the API-SERVER. If we are using Amazon EKS, I thought since Amazon handles the control plane where the API-SERVER is located, it handles the security of every component involved. With this video, I am assuming we still need to take an extra step to secure it
Will cover that
Abhishek bhai❤
Welcome
very nice explanation abhi sir but i have a doubt here you have mentioned docker scan in github repo but in video you said docker sync .
Is it docker scan or docker sync??????
synk is a tool that performs scanning on docker images. docker scan internally uses synk.
Hi Abhishek, thank you so much for content, i am more focussed towards devsecops, should i finish your zero to hero kubernetes coarse before i start this video?
If u don’t have understanding of k8s yes
Hey Abhishek.. Can you give us a trick or any plan that we can remember all these aws service, kubernetes topic so that it will be easy for the interview,, because there are so many topic on devops and not every one have sharp minded.. so hope you understand and give us a solution for this.. Thank you❤
This is an excellent Video with a bundles of Knowledge....Thanks for this awesome Video ❤
😍
I would like to inquire if Vault can be used for encryption of the ETCD
I haven’t explored that much .. sorry
Hi,,, Please make the demo part on Rbac , Network policy and rest of the topics ...it will be very helpful 🙏🙏
Sure
Hi Abhishek thanks for the video...one doubt the command is snyk or synk?
snyk , sorry for the typo
@@AbhishekVeeramalla thanks Abhishek. Just wanted to clarify 😊
Hi sir. First of all thank you for the quality of your contents. I have an issue when implementing the cicd with Argo. I import the repo and when it comes to the Jenkins file I am lost. Wondering if you can go over how you configure it ?
Please watch the ultimate cicd pipeline viceo
@@AbhishekVeeramalla I was doing it with the video but I didn’t see the part where you went through the Jenkins file configuration. I tried to figure out but with no success. I will try again today.
Which part you faced issue..
31:00, is it Docker scout or Synk. I mean sync is another project and I can see the Docker Scout!
Snyk
Thnx anna
If possible please do a video on how to make ATS resume for freshers on AWS with DevOps please anna
Noted
Nice Video...Can you Please explain the link between Google optimize and A/B testing with Kubernetes cluster and One more Keycloak.link.woth oidc..What's the link between these two..I m getting confused..
Ok noted
Thanks for your reply@@AbhishekVeeramalla ... Eagerly Waiting for your Video...😍😍
Hai Abhishek. Verramalla can we expect this in the practical video it might be helpful for a better understanding
It will be too lengthy .. I will think of something
Cluster monitoring can't be done by Prometheus or grafana ?
For example ?
@@AbhishekVeeramalla 6th point of this video you told Sysdig works like a deamon set if some hacker is attacking in that way can't be done by prometheus and grafana ?
Hi abhishek, i love your content.. Can you please make a series on azure devops ??? Please.... Please...
Noted
@@AbhishekVeeramalla thank you abhishek ♥️♥️
where is the practical sesion video for all these 7 security steps ? Can any one ping here the link
Pod container security kuda adutunaaru anna
Adi kuda cheddam aithe emundi
First view sir
Thanks alot
Ingress graphana prompetus those all use in Aks na not in use those all in eks.
They are used in aws as well
do you mean docker snyk here?
yes
Good content for free is dream in this selfish world. But some worriers like Abhishek prove it wrong...
Thanks a lot
Sir,
Can you explain in hindi also
Many subscribers don’t understand hindi bro
Bro. This security of kubernetes playliat or devops hero zero playlist confused with which playlist and what order should be flowed pls tell
This video is not part of devops zero to hero. Please check again.
This is only part of kubernetes playlist and if u want to learn kubernetes advanced u need to
Learn this
@@AbhishekVeeramalla understood bro thanks lot for detailed explanation
Thanks
Welcome