|
|
|
|
|
|
by erikb
2996 days ago
|
|
|
Basics are missing, e.g. don't run privileged containers, don't give all your pods cluster-admin rights, don't allow random hostpath mounting. (You would be surprised how much software couldn't run if this would really be enforced.) |
|
|