-
**Motivation**
We have Falco installation at out k8s cluster. When we update Falco configs (customRules, for example), then all its DaemonSet pods recreating.
But at the same time all falco-expo…
-
This issue is to track Falco's progress in regards to supporting a Prometheus Exporter for Falco's newer Metrics system https://falco.org/docs/metrics/falco-metrics/.
Important: The Falco maintaine…
-
As a short term to mitigate the risk of the root CA private key being stored on control plane nodes of the workload clusters, we need to look into auditing:
- Define resources that need to be audit…
-
**Describe the bug**
We are deploying helm chart falco and falco exporter latest version k8s 1.26
we are enabling gprc and bind to 0.0.0.0 address
```
grpc:
enabled: true
…
-
Creating a formal issue on our side to formally track the progress we are making wrt to tuning the synthetic workloads in relation to the CNCF testbed constraints, so that the reported Falco Metrics a…
-
I am trying to understand the differences between Falco and tetragon. Let’s say, falco is meant for this and it cannot do this like tetragon. Can I get some help? Kindly try to provide elaborate answe…
-
**Motivation**
This would improve the default security out of the box for helm chart users. If the containers currently support it, there isn't much downside to improving the default security.
It …
jemag updated
1 month ago
-
Trigger and alert and possible also a page in case Falco logs an unauthorized access to the root CA key files.
In case the root CA key is accessed, the root CA (an all certificates signed by it) need…
-
**Describe the bug**
When I run falco as a demonset in least priviledge mode using the edpf driver on a red hat enterprise linux 8.9, I see multiple falco process restarts in the logs on a kubernetes…
-
IMAGE SYNC