network policies – Experimental News Clipping Site

Cloud Blog: GKE network interface at 10: From core connectivity to the AI backbone

Sep 17, 2025

—

by

Source URL: https://cloud.google.com/blog/products/networking/gke-network-interface-from-kubenet-to-ebpfcilium-to-dranet/ Source: Cloud Blog Title: GKE network interface at 10: From core connectivity to the AI backbone Feedly Summary: It’s hard to believe it’s been over 10 years since Kubernetes first set sail, fundamentally changing how we build, deploy, and manage applications. Google Cloud was at the forefront of the Kubernetes revolution with…

Cloud Blog: Beyond guardrails: A taxonomy of platform engineering control mechanisms

Aug 15, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/application-modernization/platform-engineering-control-mechanisms/ Source: Cloud Blog Title: Beyond guardrails: A taxonomy of platform engineering control mechanisms Feedly Summary: The promise of platform engineering is to accelerate software delivery by empowering developers with self-service capabilities. However, this must be balanced with security, compliance, and operational stability, and for this, you need robust controls. But all too…

Cloud Blog: Designing a multi-tenant GKE platform for Yahoo Mail’s migration journey

Aug 13, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/containers-kubernetes/understanding-yahoo-mails-multi-tenant-gke-platform-design/ Source: Cloud Blog Title: Designing a multi-tenant GKE platform for Yahoo Mail’s migration journey Feedly Summary: Yahoo is in the midst of a multi-year journey to migrate its renowned Yahoo Mail application onto Google Cloud. With more than 100 services and middleware components in the application, Yahoo Mail is primarily taking a…

Cloud Blog: Powering public sector innovation: New networking features in GDC air-gapped

Jul 2, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/topics/hybrid-cloud/new-networking-features-in-gdc-air-gapped-can-power-innovation/ Source: Cloud Blog Title: Powering public sector innovation: New networking features in GDC air-gapped Feedly Summary: For organizations with stringent sovereignty and regulatory requirements, Google Distributed Cloud (GDC) air-gapped delivers a fully-managed experience with critical advanced networking capabilities. But operating in a completely isolated environment presents some unique networking challenges. Routine tasks…

Hacker News: RCE Vulnerabilities in K8s Ingress Nginx (9.8 CVE for ingress-Nginx)

Mar 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities Source: Hacker News Title: RCE Vulnerabilities in K8s Ingress Nginx (9.8 CVE for ingress-Nginx) Feedly Summary: Comments AI Summary and Description: Yes ### Summary: The text outlines the discovery of significant vulnerabilities in the Ingress NGINX Controller for Kubernetes, known as IngressNightmare. These vulnerabilities, which allow unauthenticated Remote Code Execution (RCE), pose…

The Register: Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw

Mar 25, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://www.theregister.com/2025/03/25/kubernetes_flaw_rce_risk/ Source: The Register Title: Public-facing Kubernetes clusters at risk of takeover thanks to Ingress-Nginx flaw Feedly Summary: How many K8s systems are sat on the internet front porch like that … Oh, thousands, apparently Cloudy infosec outfit Wiz has discovered serious vulnerabilities in the admission controller component of Ingress-Nginx Controller that could…

Anchore: NIST SP 800-190: Overview & Compliance Checklist

Mar 5, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://anchore.com/blog/nist-sp-800-190-overview-compliance-checklist/ Source: Anchore Title: NIST SP 800-190: Overview & Compliance Checklist Feedly Summary: This blog post has been archived and replaced by the supporting pillar page that can be found here: https://anchore.com/wp-admin/post.php?post=987474946&action=edit The blog post is meant to remain “public” so that it will continue to show on the /blog feed. This will…

Cloud Blog: A new flexible, simplified, and more secure way to configure GKE cluster connectivity

Jan 27, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://cloud.google.com/blog/products/containers-kubernetes/simplifying-gke-cluster-and-control-plane-networking/ Source: Cloud Blog Title: A new flexible, simplified, and more secure way to configure GKE cluster connectivity Feedly Summary: Google Kubernetes Engine (GKE) provides users with a lot of options when it comes to configuring their cluster networks. But with today’s highly dynamic environments, GKE platform operators tell us that they want…

Anchore: A Complete Guide to Container Security

Jan 21, 2025

—

by

Kurt Seifried

in Uncategorized

Source URL: https://anchore.com/blog/container-security/ Source: Anchore Title: A Complete Guide to Container Security Feedly Summary: This blog post has been archived and replaced by the supporting pillar page that can be found here: https://anchore.com/wp-admin/post.php?post=987474704&action=edit The blog post is meant to remain “public” so that it will continue to show on the /blog feed. This will help…

Cloud Blog: Using Cilium and GKE Dataplane V2? Be sure to check out Hubble for observability

Dec 16, 2024

—

by

system automation

in Uncategorized

Source URL: https://cloud.google.com/blog/products/containers-kubernetes/using-hubble-for-gke-dataplane-v2-observability/ Source: Cloud Blog Title: Using Cilium and GKE Dataplane V2? Be sure to check out Hubble for observability Feedly Summary: As a Kubernetes platform engineer, you’ve probably followed the buzz around eBPF and its revolutionary impact on Kubernetes networking. Perhaps you’ve explored Cilium, a popular solution leveraging eBPF, and wondered how Google…

Tag: network policies