This is great and all, but unless you specifically setup etcd to encrypt itβs data, the information you store in βsecretsβ is still plaintext, making it not very secure.
I'm a Senior DevOps Architect and publish most of my projects as open source. I have a wife, a son and a real life in Hamm, Germany. In my part-time I enjoy making games, music and acting. (He/him)
This is great and all, but unless you specifically setup etcd to encrypt itβs data, the information you store in βsecretsβ is still plaintext, making it not very secure.
+1
One of the many gotchas of trying to manage your own Kubernetes cluster. π
kubernetes.io/docs/tasks/administe...
Agreed Justin. Encryption at rest is key. Thanks for pointing this out!
I wanted to add that as well. The Kubernetes-Team didn't choose "Secret" as a term very wisely.
@Abishek, perhaps you could add this to a paragraph of your posts, because I had many people thinking of secrets as a secure storage.