Container immutability can help make containerized applications more secure. This lab will help you hone your skills at assessing container immutability by examining existing Kubernetes containers to determine whether or not they are truly immutable.
Successfully complete this lab by achieving the following learning objectives:
- Examine the Pods in the dev Namespace
Examine the Pods in the
devnamespace to determine which ones are immutable.
Consider immutable to be defined as:
- The container must not have any elevated privileges.
- The container must not be able to write to the container file system.
- Delete Any Pods That Are Not Immutable
If any of the Pods in the
devnamespace are not immutable, delete them.