OpenShift
Definition
OpenShift is a Kubernetes-based platform developed by Red Hat that provides a comprehensive environment for developing, deploying, and managing containerized applications. It extends Kubernetes with additional features such as developer tools, CI/CD pipelines, and enhanced security capabilities, making it suitable for enterprise-level applications. OpenShift supports hybrid and multi-cloud deployments, allowing for flexibility and scalability in managing workloads.
Secure Settings Example
apiVersion: v1
kind: Pod
metadata:
name: secure-pod
spec:
containers:
- name: secure-container
image: my-secure-image:latest
securityContext:
runAsNonRoot: true
capabilities:
drop:
- ALL
readOnlyRootFilesystem: true
automountServiceAccountToken: false
Insecure Settings Example
apiVersion: v1
kind: Pod
metadata:
name: insecure-pod
spec:
containers:
- name: insecure-container
image: my-insecure-image:latest
securityContext:
runAsNonRoot: false
capabilities:
add:
- NET_ADMIN
readOnlyRootFilesystem: false
automountServiceAccountToken: true