Kubernetes >

Etcd Remote Read Access Event

CRITICAL

Source

Kube Hunter

KHV032

kubernetes

Etcd Remote Read Access Event

Etcd (Kubernetes’ Database) is accessible without authentication. This exposes the entire state of your Kubernetes cluster to the reader.

Recommended Actions

Ensure your etcd is accepting connections only from the Kubernetes API, using the --trusted-ca-file etcd flag. This is usually done by the installer, or cloud platform.

Links

etcd - Transport security model
Operating etcd clusters for Kubernetes - Securing etcd clusters

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.