Webhooks - whats the worst that could happen? Marcus Noble

Webhooks in Kubernetes play an essential role in extending the functionality of the cluster and go a long way towards the power Kubernetes offers.
However as with any technology they also come with their set of risks and even potential disaster.
In this talk well go through scenarios that could possibly impact an otherwise healthy Kubernetes cluster by making use of a misconfigured or malicious webhook.
Can we take down the whole cluster? Can we block access to others? For each risk well take a look at the ways we can try to avoid them or mitigate their impact if at all possible.

Источник: rutube.ru