Comments (1)
DNS enumeration within the cluster via coredns:
root@wordpress-dccb8668f-mzg45:/var/www/html# nslookup -type=ns default.svc.cluster.local
;; Truncated, retrying in TCP mode.
Server: 10.233.0.3
Address: 10.233.0.3#53
cluster.local
origin = ns.dns.cluster.local
mail addr = hostmaster.cluster.local
serial = 1555691051
refresh = 7200
retry = 1800
expire = 86400
minimum = 30
wordpress.default.svc.cluster.local service = 0 100 80 wordpress.default.svc.cluster.local.
_http._tcp.wordpress.default.svc.cluster.local service = 0 100 80 wordpress.default.svc.cluster.local.
kubernetes-dashboard.kube-system.svc.cluster.local service = 0 100 443 kubernetes-dashboard.kube-system.svc.cluster.local.
kubernetes.default.svc.cluster.local service = 0 100 443 kubernetes.default.svc.cluster.local.
_https._tcp.kubernetes.default.svc.cluster.local service = 0 100 443 kubernetes.default.svc.cluster.local.
coredns.kube-system.svc.cluster.local service = 0 100 53 coredns.kube-system.svc.cluster.local.
_dns._udp.coredns.kube-system.svc.cluster.local service = 0 100 53 coredns.kube-system.svc.cluster.local.
coredns.kube-system.svc.cluster.local service = 0 100 53 coredns.kube-system.svc.cluster.local.
_dns-tcp._tcp.coredns.kube-system.svc.cluster.local service = 0 100 53 coredns.kube-system.svc.cluster.local.
coredns.kube-system.svc.cluster.local service = 0 100 9153 coredns.kube-system.svc.cluster.local.
_metrics._tcp.coredns.kube-system.svc.cluster.local service = 0 100 9153 coredns.kube-system.svc.cluster.local.
liveness-http.default.svc.cluster.local service = 0 100 81 liveness-http.default.svc.cluster.local.
cluster.local
origin = ns.dns.cluster.local
mail addr = hostmaster.cluster.local
serial = 1555691051
refresh = 7200
retry = 1800
expire = 86400
minimum = 30
Name: 10-233-92-48.wordpress-mysql.default.svc.cluster.local
Address: 10.233.92.48
Name: kubernetes.default.svc.cluster.local
Address: 10.233.0.1
Name: liveness-http.default.svc.cluster.local
Address: 10.233.28.202
Name: kubernetes-dashboard.kube-system.svc.cluster.local
Address: 10.233.50.205
Name: coredns.kube-system.svc.cluster.local
Address: 10.233.0.3
Name: wordpress-mysql.default.svc.cluster.local
Address: 10.233.92.48
Name: wordpress.default.svc.cluster.local
Address: 10.233.40.236
Name: coredns.kube-system.svc.cluster.local
Address: 10.233.0.3
Name: coredns.kube-system.svc.cluster.local
Address: 10.233.0.3
from audit-kubernetes.
Related Issues (20)
- Kubelet crash if a command fails to yield an stdout value
- Kubelet can be used to enumerate the host network via liveness probes
- Wrong isKernelPid check HOT 2
- Directory traversal of /var/log/ on a host running kube-apiserver HOT 1
- Potential overflows in DaemonSet status
- Potential method of preventing a Deployment from completing via ReplicationController interference
- As an Internal Attacker... HOT 5
- As An External Attacker… HOT 1
- Encryption recommendations not in accordance with best practices HOT 1
- `kubectl cp` has insecurities when communicating with a malicious pod HOT 2
- Network tracking issue
- Custom tempFile code HOT 2
- Go services seed math/random from system time
- iSCSI Volume Storage Cleartext Secrets in Logs HOT 2
- Kubernetes does not facilitate certificate revocation HOT 1
- Excessive Resource Consumption - kube-apiserver HOT 1
- HTTPS not authenticated in many communication channels HOT 1
- Improper Chunked Response Handling
- Excessive Resource Consumption - CoreDNS
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from audit-kubernetes.