Helm Summit 2019 has ended
Amsterdam, The Netherlands
September 11–12, 2019
Click here for more information and registration​​​
Back To Schedule
Thursday, September 12 • 10:55 - 11:55
Hacking Helm - Paul Czarkowski, Pivotal

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Helm is the best way to build, package, and run Kubernetes manifests. However it has been considered by some as a fairly insecure way to deploy software, mostly due to its server component Tiller. Let’s put that to the test and hack (and then protect from those hacks) Helm.

Paul and Scott will talk about the architecture behind Helm (v2) and how it is seen as particularly vulnerable to hacks designed to either gather information about deployed applications and even access the Kubernetes cluster itself. They will then demonstrate several hacks in growing sophistication that do exactly that and show how to protect yourself from those attacks and use Helm as securely as possible. They will finish with the relevant changes coming in Helm 3, and whether or not removing Tiller really is the killer security feature of Helm 3 that people think it is.

avatar for Paul Czarkowski

Paul Czarkowski

Managed OpenShift BlackBelt, Red Hat
Paul Czarkowski is a long-time practitioner of the dark arts of DevOps. Hailing from Australia, he moved to Austin,Texas to help build and run one of the largest and most successful online games. Now at Red Hat, Paul works to improve the operator experience by taking cloud native... Read More →

Thursday September 12, 2019 10:55 - 11:55 CEST
IJ Zaal