Kubernetes Podcast from Google

Explore the significance of Falco in runtime security, its CNCF graduation, and its practical implementation in Google Cloud services. Learn about the challenges in aligning podcast episodes and preparing for the CKS exam. Discover how Falco monitors events to detect unauthorized actions and manages alerts effectively in Kubernetes environments.

Lucas Käldström discusses Kubernetes API machinery, Chaos, Entropy, and even Dishwashers in an insightful chat. The podcast also covers Weaveworks shutdown, KubeAdmiral release, and Strimzi joining CNCF Incubator. The intersection of Control Theory and Kubernetes, managing JSON Objects, API Version complexities, and reflections on technology analogies are also explored.

We talk with Madhav Jivrajani, an engineer at VMware and a tech lead in SIG Contributor Experience, about a recent post on social media regarding a stale reads issue in Kubernetes and what the community is doing about it. We also discuss the role of contributor experience and GitHub administration, the importance of academic research in Kubernetes, and reflections on Eric Brewer and the CAP Theorem.

Bill Mulligan, Community Pollinator at Isovalent, discusses eBPF, Silium, and network functions in Kubernetes. They cover news on legacy Linux package repositories, Kubernetes availability, VMware's Tanzu application catalog, and pricing changes for Kubernetes support. They also explore the power of eBPF in the Linux kernel and the evolution of the Cilium project, including its networking, security, and observability capabilities. Isovalent's annual report, enterprise distribution, and the Cilium Certified Associate (CCA) certification are also discussed. The future of networking and the significance of Cilium and eBPF in simplifying networking tasks are explored.

Johnny Horvi and Frode Sundby from NAVs platform team discuss NAIS, a Kubernetes-based platform. They talk about the benefits of a team-centric platform, the ease of deploying and operating apps, and the availability of tooling and insights. They also explore the services provided by NAV and collaboration among Norwegian public institutions. The future focus of NAIS is on cost and improving the developer experience.

Priyanka Saggu, Kubernetes v1.29 release lead, discusses the new features and enhancements of the release. The interview also covers address encryption in Kubernetes APIs, the trend of treating vendor-specific functionalities as plugins, and reflections on the past year of the podcast.

At KubeCon NA 2023, Kaslin interviewed attendees, discussed the new CPU vulnerability Reptar, and the release of Spring Boot 3.2. Other topics include AI, security, and environmental sustainability in the tech industry, accessibility, WebAssembly, and imposter syndrome. The episode reflects on the overwhelming but exciting experience at KubeCon NA 2023, SIG Boba's success, and proposals for a newbie booth. The hosts discuss their favorite moments, the importance of accessibility, and call for spreading the word about the podcast.

Jesper Larsson, a Freelance PenTester, discusses the importance of security in Kubernetes and infrastructure as code. They cover topics such as access permissions, web application vulnerabilities, pen testing experiences, and common mistakes to avoid. Jesper also shares his background in hacking and penetration testing, emphasizing the significance of networking at meetups. The podcast explores vulnerabilities in third-party software companies and the limitations of using example code. They also discuss an AI tool for analyzing overprivileged accounts in Google Cloud.

Guest Fabian Kammel, Security Architect at ControlPlane, discusses confidential computing, trusted execution environments, and the differences between TPMs and HSMs. The chapter also explores the concept of confidential virtual machines and their use in sensitive industries like defense and healthcare.

Marek Siarkowicz and Wenjia Zhang discuss etcd, its recent change to become a Special Interest Group, and how to learn etcd. They explore the role of etcd as a key value store in Kubernetes, the importance of storage and data, learning about HCD and clusters for the certified Kubernetes administrator exam, contributing to the etcd community, and the functionality and limitations of the queue tool for Kubernetes.