Merge pull request #37492 from chrisnegus/20221024-mcngs-fix-concept-weight
Add page weights to concepts -> security pagespull/37496/head
Kubernetes Prow Robot
GitHub
commit
453dd71949
|
|
@ -3,6 +3,7 @@ title: Kubernetes API Server Bypass Risks
|
|||
description: >
|
||||
Security architecture information relating to the API server and other components
|
||||
content_type: concept
|
||||
weight: 90
|
||||
---
|
||||
|
||||
<!-- overview -->
|
||||
|
|
@ -143,4 +144,4 @@ control plane components.
|
|||
that include the container runtime socket, either directly or by mounting a parent
|
||||
directory. Also `hostPath` mounts must be set as read-only to mitigate risks
|
||||
of attackers bypassing directory restrictions.
|
||||
- Restrict user access to nodes, and especially restrict superuser access to nodes.
|
||||
- Restrict user access to nodes, and especially restrict superuser access to nodes.
|
||||
|
|
|
|||
|
|
@ -3,6 +3,7 @@ title: Security Checklist
|
|||
description: >
|
||||
Baseline checklist for ensuring security in Kubernetes clusters.
|
||||
content_type: concept
|
||||
weight: 100
|
||||
---
|
||||
|
||||
<!-- overview -->
|
||||
|
|
@ -12,6 +13,7 @@ comprehensive documentation on each topic. It does not claim to be exhaustive
|
|||
and is meant to evolve.
|
||||
|
||||
On how to read and use this document:
|
||||
|
||||
- The order of topics does not reflect an order of priority.
|
||||
- Some checklist items are detailed in the paragraph below the list of each section.
|
||||
|
||||
|
|
|
|||
Loading…
Reference in New Issue