Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AKS Learn feedback: Cluster security #10

Open
Garnaalkroket opened this issue Aug 5, 2024 · 1 comment
Open

AKS Learn feedback: Cluster security #10

Garnaalkroket opened this issue Aug 5, 2024 · 1 comment
Assignees
@schaffererin
Labels
Pri3

Comments

@Garnaalkroket
Copy link

Type of issue

Outdated article

Feedback

This page mentions the following as part of the Secure computing section:

_Seccomp is also a Linux kernel security module, and is natively supported by the Docker runtime used by AKS nodes. _

I was under the impression AKS no longer uses Docker but containerd as the underlying runtime, it seems like this information is outdated?

Another, minor, point of feedback are the steps outlined as part of To see seccomp in action, create a filter that prevents changing permissions on a file.. Perhaps it would be best to link to initiatives such as the https://github.com/kubernetes-sigs/security-profiles-operator in order to managed seccomp profiles?

Kind regards,
Garnaalkroket

Page URL

https://learn.microsoft.com/en-us/azure/aks/operator-best-practices-cluster-security?tabs=azure-cli

Content source URL

https://github.com/MicrosoftDocs/azure-aks-docs/blob/main/articles/aks/operator-best-practices-cluster-security.md

Author

@schaffererin

Document Id

ef933650-5c49-de38-62c0-23afaeb1716f
@schaffererin
Copy link
Contributor

#assign:schaffererin

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@schaffererin schaffererin

Labels
Pri3
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Garnaalkroket @schaffererin