Kubernetes Security: Overly Permissive RBAC Configurations

Introduction

RBAC is already integrated into Kubernetes, so that it can offer users with the appropriate level of authorization. RBAC is the key mechanism for enforcing access policies to the many resources that Kubernetes provides, such as pods, clusters, nodes, and so on. The request that is sent to the API will be checked based on the policies and rules…