klizhentas
commented
4 years ago Best case scenario: 1 mo Worst case scenario: 3 mo Covers: A6 and A7
Open klizhentas opened 4 years ago
klizhentas
commented
4 years ago Best case scenario: 1 mo Worst case scenario: 3 mo Covers: A6 and A7
awly
commented
4 years ago Some inspiration: https://github.com/kinvolk/inspektor-gadget
yjperez
commented
3 years ago 
roobeshm
commented
2 years ago Add enhanced session recording to kubectl exec
Add enhanced session recording to kubectl exec sessions. This will require Teleport to be installed on every GKE cluster node and run in privileged mode to be able to load BPF programs. Kernel requirements to the GKE nodes are similar to:
https://gravitational.com/teleport/docs/features/enhanced_session_recording/#ubuntu
this is much needed feature, to solve Obfuscation. K8s executed commands by scripts or other means should be visible from an audit log/session-recording standpoint.
Add enhanced session recording to kubectl exec
Add enhanced session recording to kubectl exec sessions. This will require Teleport to be installed on every GKE cluster node and run in privileged mode to be able to load BPF programs. Kernel requirements to the GKE nodes are similar to:
https://gravitational.com/teleport/docs/features/enhanced_session_recording/#ubuntu
gz#3967