What happens if an attacker escapes a container and compromises your node? Is it game over for the whole cluster, or can you limit the blast radius?
Tim Allclair and Greg Castle, give us a recap from their #KubeCon + #CloudNativeCon presentation about “node isolation” and how Kubernetes scheduling can be used to to execute workloads on separate nodes.
Watch other episodes in the KubeCon, San Diego playlist → https://goo.gle/KubeConSD
Subscribe to the GCP YouTube Channel →https://goo.gle/GCP
Duration: 3:7
Publisher: Google Cloud
You can watch this video also at the source.
