We need to make sure that Pods running within Kubernetes cannot access the AWS Metadata endpoints. (We might want to allow this on a per-namespace basis but by default, no one should be able to access the AWS Metadata endpoints from within a Kubernetes Pod.)
We need to make sure that Pods running within Kubernetes cannot access the AWS Metadata endpoints. (We might want to allow this on a per-namespace basis but by default, no one should be able to access the AWS Metadata endpoints from within a Kubernetes Pod.)
http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/ec2-instance-metadata.html