Getting started with containers is relatively straightforward. If you have an environment like your personal laptop with a container runtime such as docker or containerd, the docker CLI, and a docker file for your application then you can have a container up and running in no time. However, there's still a lot of groundwork that has to be done to configure your containers to be considered optimal from a best practice and security perspective. If you plan on running on containers at scale in a Kubernetes cluster, then there are a number of factors to consider to get your workloads in good shape.
In this video, I go through some of the best practices that you can implement in your container workloads for Kubernetes. More importantly, I'll demonstrate how you can use a tool like Datree to apply a policy that contains battle-tested rules to validate your workloads.
#kubernetes #kubernetessecurity #containers #containersecurity
www.datree.io/
Timestamps:
00:00 - Overview
00:53 - Using Datree to vet your container workloads
01:13 - Reviewing a Dockerfile
01:57 - Reviewing a Kubernetes Deployment manifest file in bad shape
03:16 - Creating a Kubernetes Deployment resource with a bad manifest file
04:48 - Vetting the Deployment manifest with Datree policy that includes enabled rules for container best practices
05:45 - Datree test results for the manifest file
07:03 - Reviewing Datree profile and policy with container best practice rules
07:45 - Updated Deployment manifest file with container best practices
08:01 - Using Datree to test updated Deployment manifest file with remediated issues
08:43 - Walking through the different best practices for container configurations in a Deployment manifest file
14:16 - Re-deploying the Deployment manifest file with the updated changes
Connect:
GitHub: github.com/LukeMwila
Twitter: / luke9ine
Medium: / outlier.developer
LinkedIn: / lukonde-mwila-25103345
If you found this video helpful, please like the video and subscribe to the channel!