Posts in 2021

  • A Closer Look at NSA/CISA Kubernetes Hardening Guidance

    Tuesday, October 05, 2021 in Blog

    Authors: Jim Angel (Google), Pushkar Joglekar (VMware), and Savitha Raghunathan (Red Hat) Disclaimer The open source tools listed in this article are to serve as examples only and are in no way a direct recommendation from the Kubernetes community or …

    Read more

  • How to Handle Data Duplication in Data-Heavy Kubernetes Environments

    Wednesday, September 29, 2021 in Blog

    Authors: Augustinas Stirbis (CAST AI) Why Duplicate Data? It’s convenient to create a copy of your application with a copy of its state for each team. For example, you might want a separate database copy to test some significant schema changes or …

    Read more

  • Spotlight on SIG Node

    Monday, September 27, 2021 in Blog

    Author: Dewan Ahmed, Red Hat Introduction In Kubernetes, a Node is a representation of a single machine in your cluster. SIG Node owns that very important Node component and supports various subprojects such as Kubelet, Container Runtime Interface …

    Read more

  • Introducing Single Pod Access Mode for PersistentVolumes

    Monday, September 13, 2021 in Blog

    Author: Chris Henzie (Google) Last month's release of Kubernetes v1.22 introduced a new ReadWriteOncePod access mode for PersistentVolumes and PersistentVolumeClaims. With this alpha feature, Kubernetes allows you to restrict volume access to a …

    Read more

  • Alpha in Kubernetes v1.22: API Server Tracing

    Friday, September 03, 2021 in Blog

    Authors: David Ashpole (Google) In distributed systems, it can be hard to figure out where problems are. You grep through one component's logs just to discover that the source of your problem is in another component. You search there only to discover …

    Read more

  • Kubernetes 1.22: A New Design for Volume Populators

    Monday, August 30, 2021 in Blog

    Authors: Ben Swartzlander (NetApp) Kubernetes v1.22, released earlier this month, introduced a redesigned approach for volume populators. Originally implemented in v1.18, the API suffered from backwards compatibility issues. Kubernetes v1.22 includes …

    Read more

  • Minimum Ready Seconds for StatefulSets

    Friday, August 27, 2021 in Blog

    Authors: Ravi Gudimetla (Red Hat), Maciej Szulik (Red Hat) This blog describes the notion of Availability for StatefulSet workloads, and a new alpha feature in Kubernetes 1.22 which adds minReadySeconds configuration for StatefulSets. What problems …

    Read more

  • Enable seccomp for all workloads with a new v1.22 alpha feature

    Wednesday, August 25, 2021 in Blog

    Author: Sascha Grunert, Red Hat This blog post is about a new Kubernetes feature introduced in v1.22, which adds an additional security layer on top of the existing seccomp support. Seccomp is a security mechanism for Linux processes to filter system …

    Read more

  • Alpha in v1.22: Windows HostProcess Containers

    Monday, August 16, 2021 in Blog

    Authors: Brandon Smith (Microsoft) Kubernetes v1.22 introduced a new alpha feature for clusters that include Windows nodes: HostProcess containers. HostProcess containers aim to extend the Windows container model to enable a wider range of Kubernetes …

    Read more

  • Kubernetes Memory Manager moves to beta

    Wednesday, August 11, 2021 in Blog

    Authors: Artyom Lukianov (Red Hat), Cezary Zukowski (Samsung) The blog post explains some of the internals of the Memory manager, a beta feature of Kubernetes 1.22. In Kubernetes, the Memory Manager is a kubelet subcomponent. The memory manage …

    Read more