Not rendering correctly? View this email as a web page here.

New kubernetes vulnerability

Hey there,

Did you know of the new vulnerability that has been discovered within the k8s API?
This flaw is centered around the parsing of YAML manifests by the Kubernetes API server. During this process, the API server is open to potential Denial of Service (DoS) attacks. Read more in the Community section below. 

Kubernetes Best Practices:

This week we discuss a couple of kubernetes best practices when it comes to the Singleton Application Pattern and the Stateful Service Pattern.

Go to blog

stateful Service 1

Kubernetes Patterns: The Stateful Service Pattern

What's inside:
  • To Be Stateless or Not!
  • Why ReplicaSets Fall Short When Dealing With “Pets”?
  • StatefulSet Examples.
  • Canary Releases Using Partitioned Updates.
  • Stable Network Identity.
Singelton

Kubernetes Patterns : Singleton-Application Pattern

What's inside:
  • What is The Singleton Pattern?
  • How The Singleton Pattern is Applied?
  • Implementing The Singleton Pattern in Kubernetes.
  • Using a ReplicaSet: Non-Aware Application.
  • Using a StatefulSet: a Non-Aware Application.
  • How Does Pod Disruption Work With Other Controllers?

 

From the Community


Kubernetes ‘Billion Laughs’ Vulnerability Is No Laughing Matter

A new vulnerability has been discovered within the Kubernetes API. This flaw is centered around the parsing of YAML manifests by the Kubernetes API server. During this process, the API server is open to potential Denial of Service (DoS) attacks. The issue (CVE-2019-11253 — which has yet to have any details fleshed out on the page) has been labeled a “Billion Laughs” attack because it targets the parsers to carry out the attack.

Read more...


 Top 5 Container Security Tools You Should Already Be Using

Containers have been one of the hottest trends in the software industry in recent years as more organizations turn to them to build, test, and deploy faster without the frictions that can come from changing environments. However, while tools like Kubernetes and Container Registries have become household names for developers because these tools make it easier to develop and deploy containers, many are still catching up on the need to integrate container security tools in order to secure their containerized application throughout the container lifecycle.

Read more...


Michael Dell: Kubernetes On VMware vSphere Coming ‘Very, Very Soon’

“We’re putting Kubernetes right into vSphere. We showed that on stage at VMWorld and gave demos of it -- that’s coming very, very soon to the 600,000 vSphere customers that we have around the world,” said Dell in an interview with CRN. “It’s incredibly powerful to be able to manage virtual machines and Kubernetes clusters all from the same console and framework that all these customers are already use too.”

Read more...


Kubernetes is Winning the Multi-Cloud War

Most enterprise organizations are multi-cloud. So says our own research, as well as just about every other industry report I can find. In fact, I find consistently that less than 20% of organizations are shunning public cloud in general. Given the nearly ubiquitous use of SaaS to supply commoditized business functions (CRM, productivity, SFA, communications) it seems inarguable that organizations make use of multiple cloud properties to host a portion of their application portfolios.

Read more...


If there is something you want us to include in a newsletter please send it to weekly@magalix.com


For more details about magalix agent:

Azure GCP marketplace

Magalix agent repo github_PNG58