Kubernets

Question 1

What is Kubernetes?

Answer 1

A container orchestration platform for automating deployment, scaling, and operations of application containers across clusters of hosts.

Question 2

What are Pods in Kubernetes?

Answer 2

The smallest deployable unit in Kubernetes, consisting of one or more containers that share network and storage.

Question 3

What is a distributed key-value store?

Answer 3

A highly available and consistent database that stores configuration data, metadata, and state for distributed systems.

Question 4

What is the Control Plane in Kubernetes?

Answer 4

The set of components that manage the Kubernetes cluster, including scheduling, controllers, and API access.

Question 5

What is Kube-apiserver?

Answer 5

The front-end component of the Kubernetes control plane that exposes the Kubernetes API and processes REST requests.

Question 6

What is etcd?

Answer 6

A distributed key-value store used by Kubernetes to store cluster state and configuration data reliably.

Question 7

What does kube-scheduler do?

Answer 7

A control plane component that assigns newly created pods to available nodes based on resource requirements and constraints.

Question 8

What is kube-controller-manager?

Answer 8

A component that runs controller processes to regulate the cluster state, such as managing nodes, endpoints, and replication.

Question 9

What is cloud-controller-manager?

Answer 9

A Kubernetes component that integrates with cloud provider APIs to manage cloud-specific resources such as load balancers and storage.

Question 10

What are Kubernetes nodes?

Answer 10

The worker machines in a Kubernetes cluster that run containerized applications and are managed by the control plane.

Question 11

What is Kubelet?

Answer 11

A node agent that ensures containers in a pod are running and communicates with the Kubernetes control plane.

Question 12

What does kube-proxy do?

Answer 12

network component that maintains the network rules for service discovery and routing in nodes

Question 13

What is a container runtime?

Answer 13

Software responsible for running containers, such as Docker, containerd, or CRI-O, within Kubernetes nodes.

Question 14

What are the features of Kubernetes?

Answer 14

Self-healing, Secret and configuration management, load balancing, automatic rollback and rollout, automatic bin packaging, storage orchestration.

Question 15

FCCJSC — Kubernets Best Practices

Answer 15

• F – File validation: Ensure input files are verified before processing
• C – Credential path configuration: Secure and correctly configure paths to credentials
• C – Compound error handling: Gracefully manage multiple errors without leaking sensitive data
• J – JSON construction best practices: Sanitize and validate JSON structures before use
• S – Shell command validation: Avoid injection by validating and sanitizing shell input
• C – Code readability through consistent parsing: Use clear and consistent parsing logic to prevent misinterpretation

Question 16

PM-TOSS- Serverless Security

Answer 16

• P – Permissions: Minimize them
• M – Monitor function layers
• T – Third-party security tools
• U – Update dependencies
• S – Snyk and other scanning tools
• S – Sanitize event inputs