Killer Shell

Question 12: (3rd secret) exec to pod and run curl [https://kubernetes.svc/api/v1//secrets/](https://kubernetes.svc/api/v1//secrets/) -H "Authorization: Bearer (cat $/etc/token)" -k

Question 17: I didn't restart or checked kubeapi server after changing audit config.

Question 9: Make sure to view the profile name from inside the file, its different from the profile name!

Question 3: Always check the apiserver config to remove node port.

Tip: For labeling you can run k label node cluster1-node1 security=apparmor

Last updated 1 month ago