How to prevent denial of service attack on kubernetes clusters

chinmoy_padhi · July 3, 2020, 12:08pm

Asking for help? Comment out what you need so we can get more information to help you!

Cluster information:

Kubernetes version:v1.15.5
Cloud being used: Bare-metal
Installation method:RKE(Rancher Kubernetes Engine)
Host OS: RHEL 7.7
CNI and version:calico-cni:v3.7.4
CRI and version: NA

Hi I have a query related to slow http Denial Of service attack for following Kubernetes services Kube-Proxy,nginx,node_exporter,nginx,kube-controller-manager,kube-scheduler,Kubelet . Our security team has login to K8 cluster via Rancher 2 UI and access to the K8 cluster and they ran the security scan for the above services and they found DOS vulnerability for those K8 services. How to resolve this DOS security issues for these services.Currently I am using Rancher v2.2.9 and K8 version 1.15.5 . Please suggest it is very urgent

Thanks

Topic		Replies	Views
[ANNOUNCE] CVE-2019-11253: denial of service vulnerability from malicious YAML or JSON payloads Announcements cve	0	3897	October 16, 2019
Which config file do I edit to disable rke2-coredns on rke2? General Discussions	0	447	January 10, 2023
CVE-2022-37434 & CVE-2022-0778 reported on kube-proxy container General Discussions security	2	760	June 6, 2023
Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514 Announcements security	1	12381	August 20, 2019
Kubernetes Security Announcement - v1.11.8, 1.12.6, 1.13.4 released to address medium severity CVE-2019-1002100 Announcements security , cve	1	15747	March 1, 2019

How to prevent denial of service attack on kubernetes clusters

Cluster information:

Related topics