Kubernetes Training Fundamentals - Module 1 - Intro to Containers and Docker
by Mike 'MJ' Johnson
| Thursday, Dec 13, 2018
| Docker Kubernetes
This series is intended to be a introductory look into Kubernetes. If your organization is interested in custom training around your infrastructure, please reach out to us at BoxBoat. We are both a Docker and Linux Foundation training partner and can provide onsite corporate training on Docker and Kubernetes.
Welcome to the first post in the BoxBoat Kubernetes Training Fundamentals course. We designed a blog and video series to get you familiar with the core tenants of Kubernetes and Docker container orchestration.
Containerization Crash Course - What is a Container?
| Tuesday, Dec 11, 2018
Docker container adoption is up 500 percent year over year, and two-thirds of organizations that try Docker containers triple their use within three months (ref: Datadog). It’s quite clear that containers are popular.
But despite the rapid adoption rate, many do not know the basics of containers, namely how they differ to virtual machines, their advantages as well as their limitations, and the required tools you need to run containers effectively.
Docker Community Edition or Docker Enterprise Edition - Everything You Need to Know
| Friday, Dec 7, 2018
In March 2017, Docker released Docker Enterprise Edition (EE), merging their previous enterprise offering of Docker Datacenter and renaming their free offering to Docker Community Edition (CE).
Docker Inc. positions CE for development and Docker EE for business-critical deployments. In this article, we’ll dive deeper into the differences between Docker CE and Docker EE, so you can identify the best option for your project as it stands today, and the best option for your project as it matures.
What To Do If Your App is Delivered in a Container
| Thursday, Dec 6, 2018
Even if you have no containerization experience, there is no need to panic if your vendor has supplied the application you ordered as a container.
There are many ways to run and orchestrate containers, and these solutions offer great features that allow you to automatically manage applications. You can ensure they remain online, monitor them and automatically manage capacity allowing you to both scale up to handle increased demand and scale down saving you money, when demand decreases.
Kubernetes Vulnerability - CVE-2018-1002105
by Mike 'MJ' Johnson Cole Kennedy
| Tuesday, Dec 4, 2018
With the popularity of Kubernetes, there is always potential for security vulnerabilities to be uncovered. And well, this one is a doozy.
What is it? The Kubernetes team just released a fix for CVE-2018-1002105 which allowed for anyone with API access (privileged or not) to use a specifically crafted request to obtain privilege escalation and take control of your Kubernetes cluster. Ouch.
From the CVE:
“With a specially crafted request, users that are authorized to establish a connection through the Kubernetes API server to a backend server can then send arbitrary requests over the same connection directly to that backend, authenticated with the Kubernetes API server’s TLS credentials used to establish the backend connection.