Hide Forgot
Description of problem: From Insomnia security: > The OpenShift documentation is extensive and well written, > however the key security controls are not clearly enumerated > in one location in the documentation. For example, Insomnia > was approximately a week into familiarisation with the > platform before understanding that the Custom Build Strategy > was inherently dangerous (it is explained in the Securing Builds > by Strategy section, but this is relatively buried in the Cluster > Administration). The consequences of setting some of the controls > (e.g. in the Managing Security Control Constraints section) are > not clearly illustrated; it is not clear that some of these can > result in complete failure of containment on the entire platform. > It may be feasible to create a specific “Security Best Practices” > section of the document which explains the key security controls, > their effect on the posture of the platform, and with > recommendations for these controls. I agree that the lack of a section that details all of the critical controls in one location is a problem. Could we please remedy this? Perhaps we could query team leads to see if they have any candidate controls to add to the section in addition to the one mentioned above. Document URL: Section Number and Name: Describe the issue: Suggestions for improvement: Additional information:
This was published recently: https://access.redhat.com/documentation/en-us/openshift_container_platform/3.5/html-single/container_security_guide/