Posted on

5 Best Security Practices for Kubernetes and Oracle Kubernetes Engine

In this article, readers will learn about each best practice in Open Source Kubernetes as well as Oracle’s Kubernetes managed service (OKE) running on Oracle Cloud Infrastructure (OCI).

Kubernetes has gained rapid traction over the last three years and is being deployed in production by many companies. While in general, Kubernetes does follow the core software security principles, some ownership of security falls on the shoulders of the end users. Just like a shared security responsibility model exists between all cloud providers and the customers, there is a shared security responsibility for managed Kubernetes services being offered by cloud providers. Managed Kubernetes Services Cloud providers like Oracle Cloud Infrastructure Container Engine for Kubernetes (also known as Oracle Kubernetes Engine or OKE), Azure Kubernetes Service (AKS), and others are typically responsible for managing and securing the control plane (API Server, scheduler, etcd, controllers) of the Kubernetes cluster and customers of the managed service are responsible for the securing the data plane (node pools, ingress, networking, service mesh etc).

Posted on

Manage Configurable Data In Kubernetes

When doing containerization, often there is a need to have some configurations manageable from outside the container. After a container has booted with certain pre-configured data, it is necessary to have a way by which this data can be modified at runtime, if needed. For instance, we may have different configurations for different deployment environments and we may want to use the correct set of configurations for a target environment without re-creating the container.

Kubernetes provides ConfigMap to help configure data externally. This follows the design paradigm - "separation of config from code." The ConfigMap API makes the application portable. The configuration can be changed without redeploying the application.

Posted on

The Complete Kubernetes Collection [Tutorials and Tools]

Everything you need to guide your Kubernetes implementation.

Kubernetes is the leading container orchestrator in software development, but you knew that already. With multiple companies, from Red Hat to Rancher, creating distributions built on top of the Google-native service and endless commentary that compares Kubernetes to other proprietary container orchestrators, there's little doubt about the tool on developers' minds.

In this conveniently-compiled Kubernetes compilation, we feature the most useful, liked, and complete articles from our contributors. Starting with a few articles to introduce you to the service as a whole, we then take a deep dive into Kubernetes architecture and components and how to get started using them. Next, we review some useful information about implementing Kubernetes with tutorials and tools, with guest appearances from Java and DevOps.