Looking to secure a Kubernetes cluster? One step you should take is unloading unnecessary kernel modules in your Linux containers. Learn how to stop modules from loading on your containers in a helpful tutorial.
Kubernetes is an incredible container management system. But with that power comes a great deal of responsibility on the behalf of the developers and admins. If you aren't deploying secure containers on secure clusters, you're fighting a losing battle from the beginning.
Fortunately, this is Linux we're talking about, so there's plenty you can do to help ensure the security of your deployments.
One very crucial task you can undertake is to prevent unwanted kernel modules from loading on your containers. You'd be surprised at how many modules load at boot—many of them you probably don't need to be using within your containers.
But how do you stop them from loading? I'm going to show you.