Restrict K8s Secret access to a specific ServiceAccount. Good practices for Kubernetes Secrets.

Create a highly available and resilient Kubernetes platform using Pod Affinity/Anti-affinity.

In this article, I will use a tool called kube-bench to evaluate a Kubernetes cluster for vulnerabilities covered in the CIS benchmark.

In this article, I will present my perspective on securing an Azure Kubernetes cluster with the principle of least privilege as a top priori

Kubernetes  is a widely adopted technology, with 84% of organisations actively using or evaluating it, according to the 2023 Cloud Native...

Apache Kafka employs Access Control Lists (ACLs) as a vital component of its security infrastructure. ACLs regulate access to Kafka...

This is the third and final articles explaining and detailing the Kubernetes Network model with a hands-on approach. In the first article...

This is the second of three articles explaining and detailing the Kubernetes Network model with a hands-on approach. In the first...

This is the first part of three articles explaining and detailing the Kubernetes Network model with a hands-on approach. The series will...

This article will describe how to use Kubernetes Probes to monitor the health of your Kafka pods. Container Health K8s provides a number...

All Kubernetes objects are stored on etcd. Periodically backing up the etcd cluster data is important to recover Kubernetes clusters...

This page describes the steps to quickly implement basic monitoring for Kafka Brokers using Prometheus and Grafana. Enabling Prometheus...

This article describes how to automate the AWS Cost Report creation and send it via email to specific subscribers.

When you need to reassign a partition to another broker or brokers, the kafka-reassign-partitions tool comes in handy. It's particularly...

When you create a source connector in Kafka Connect, by default it will use the broker's default batch.size which is 16384 bytes (16Kb)....

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol and SASL/PLAIN authentication. This article is...

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol and SSL encryption. This article is a...

Learn how to launch an Apache Kafka with the Apache Kafka Raft (KRaft) consensus protocol, removing Kafka's dependency on Apache...

Network Policies are an application-centric construct that allows you to specify how a pod is allowed to communicate with various network...

Ansible infrastructure-as-code to automate Nginx deployment in Google Kubernetes Cluster (GKE) on Google Cloud Platform (GCP)....