Wednesday, May 22 • 14:00 - 14:35
Hacking Helm - Paul Czarkowski, Pivotal & Scott Rigby, Codeacademy

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
Helm is the best way to build, package, and run Kubernetes manifests. However it has been considered by some as a fairly insecure way to deploy software, mostly due to its server component Tiller. Let’s put that to the test and hack (and then protect from those hacks) Helm.

Paul will talk about the architecture behind Helm (v2) and how it is seen as particularly vulnerable to hacks designed to either gather information about deployed applications and even access the kubernetes cluster itself. Paul will then demonstrate several hacks in growing sophistication that do exactly that and then show how to protect yourself from those attacks. Paul will finish with a summary of how you can use Helm as securely as possible.

avatar for Scott Rigby

Scott Rigby

Senior DevOps Engineer, Codeacademy
Scott is a Brooklyn based interdisciplinary artist and open source software engineer, co-developing experimental cultural projects and emerging technologies. he co-founded the Basekamp art and research group in 1998 and the massively collaborative Plausible Artworlds international... Read More →
avatar for Paul Czarkowski

Paul Czarkowski

Developer Advocate, Pivotal
Paul Czarkowski is a recovering Systems Administrator who has run infrastructure for longer than he cares to admit. After cutting his teeth in the ISP and Gaming industries Paul changed his focus to using (and contributing to) Open Source Software to improve the Operability of complex... Read More →

Wednesday May 22, 2019 14:00 - 14:35
Hall 8.0 A1