Introduction to the Kubernetes Seccomp Operator
Offered By: Rawkode Academy via YouTube
Course Description
Overview
Explore the Kubernetes Seccomp Operator in this comprehensive video tutorial featuring Daniel Mangum and Sascha Grunert. Learn about seccomp (secure computing mode), a Linux kernel security facility that restricts process system calls through defined profiles. Discover how the Seccomp Operator simplifies seccomp profile management in Kubernetes environments. Follow along as the hosts install the operator, create and apply seccomp profiles, and deploy nginx with and without profiles. Gain insights into tracing blocked syscalls, using strace for syscall listing, and leveraging podman to generate seccomp profiles. Enhance your Kubernetes security knowledge and implement new security primitives in your environments through this informative session.
Syllabus
- Holding screen
- Introductions
- What is seccomp and the seccomp operator
- Installing the seccomp operator
- Seccomp profiles
- Deploying nginx with and without a seccomp profile
- Switching to Linux because Docker for Mac wasn't working
- Tracing blocked syscalls
- Listing syscalls with strace
- Using podman to generate seccomp profiles
Taught by
Rawkode Academy
Related Courses
Introduction to IoT Reverse EngineeringHack in Paris via YouTube Strace - Monitoring the Kernel-User-Space Conversation
NDC Conferences via YouTube Strace - Swiss Army Knife to Trace, Analyze, and Debug in Real-Time
Linux Foundation via YouTube Mentorship Session - Tools and Techniques to Debug an Embedded Linux System
Linux Foundation via YouTube Linux Tracing Techniques
Linux Foundation via YouTube