Implementing Canary releases on Kubernetes w/ Spinnaker, Istio, and Prometheus
In a microservices world, applications consist of dozens, hundreds, or even thousands of components. Manually deploying and verifying deployment quality in production is virtually impossible. Kubernetes, which natively supports rolling updates, enables blue-green application deployments with…
Kubernetes security anatomy and the recently disclosed CVEs
Recently, 2 CVE disclosures (CVE-2020-8555, CVE-2020-8552) made by the community – the first affects the control plane and the latter is network security related that can be exploited to hijack host and other containers traffic. In…
DoiT International is proud to highlight our partner Apolicy in this upcoming webinar, a fascinating introduction to the world of Kubernetes Policies. Kubernetes Policies are one of the most impactful tools Kubernetes offers, providing the ability…
Guest post originally published on the Kublr blog by Oleg Chunikhin Cloud native and open source technologies have modernized how we develop software, and although they have led to unprecedented developer productivity and flexibility, they were not built…
Optimize your Kubernetes Clusters on Azure with Built-in Best Practices
Containers allow developers to build and deploy applications efficiently, but managing containerized apps with Kubernetes clusters can be complex. Watch this webinar to learn how Azure solutions combined with CNCF projects can automatically identify, optimizations, efficiencies…
Testing Kubernetes deployments within CI Pipelines
Guest post originally published on eficode Praqma by Michael Vittrup Larsen, Cloud Infrastructure and DevOps Consultant at Eficode-Praqma Low overhead, on-demand Kubernetes clusters deployed on CI Workers Nodes with KIND How to test Kubernetes artifacts like…
Identifying Kubernetes Config Security Threats: Pods Running as Root
Guest post by Joe Pelletier, VP of Strategy at Fairwinds With different teams – development, security and operations – and prioritization of speedy delivery over perfect configuration, mistakes are inevitable. As teams work on building and…
Kubernetes and storage. Kubernetes for storage. An overview.
Originally designed for stateless workloads only, over the last two to three years, the growth of stateful workloads on Kubernetes has been rapid. Today it is common to see monitoring, logging, e-commerce, CI/CD, ML, and other…
Project Antrea is an open source Kubernetes CNI network plugin simplifying secure pod connectivity and network policy enforcement powered by Open vSwitch (OVS). Project Antrea provides a powerful toolset to reason about and troubleshoot distributed security…
Kubernetes Resources Management – QoS, Quota, and LimitRange
Guest post originally published on the Darumatic blog by Brandon Tsai Before Kubernetes, software applications were typically run standalone in a VM and use up all the resources. Operators and developers needed to carefully choose the…