From the course: Kubernetes Threat and Attack Detection by Pearson
Join today to access over 25,200 courses taught by industry experts.
Read only filesystem - Kubernetes Tutorial
From the course: Kubernetes Threat and Attack Detection by Pearson
Read only filesystem
In this demonstration, we are going to configure a read-only file system for Kubernetes pods to be able to ensure that we are creating an immutable infrastructure environment. Now we want to go ahead and create a pod and just give some examples of what's going on here. Now, there are a number of different ways in which you can do this, and one of the easiest ones that you have, is the ability to be able to set up the root file system to be able to be at read only. Now, that's going to give us this capability to be able to just create a simple container, and we're going to set that root file system equal to true. And that's going to launch the pod. But what we're going to find is that the pods are actually not going to operate very well in this situation. So we saw examples before where we were looking at Nginx, and we know that Nginx does not like read-only if you don't configure it properly. So let's go ahead and take a quick look at the pod. So let's see it. So we do have a error…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.