arno/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2024-11-26 09:58:14 +00:00
Code Issues Releases Wiki Activity

Update the config file

Browse Source
This commit is contained in:
Liz Rice 2017-08-30 18:36:00 +01:00
parent f5cef922cc
commit e4e41683c4
1 changed files with 64 additions and 100 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

156
cfg/config.yaml
View File

@ -7,106 +7,70 @@
# nodeControls: ./cfg/node.yaml # nodeControls: ./cfg/node.yaml
# federatedControls: ./cfg/federated.yaml # federatedControls: ./cfg/federated.yaml
## Support components master:
bins:
apiserver:
- "kube-apiserver"
- "hyperkube apiserver"
- "apiserver"
scheduler:
- "kube-scheduler"
- "hyperkube scheduler"
- "scheduler"
controllermanager:
- "kube-controller-manager"
- "hyperkube controller-manager"
- "controller-manager"
confs:
apiserver:
- /etc/kubernetes/admin.conf
- /etc/kubernetes/apiserver
- /etc/kubernetes/manifests/kube-apiserver.yaml
scheduler:
- /etc/kubernetes/scheduler.conf
- /etc/kubernetes/scheduler
- /etc/kubernetes/manifests/kube-scheduler.yaml
controller-manager:
- /etc/kubernetes/controller-manager.conf
- /etc/kubernetes/controller-manager
- /etc/kubernetes/manifests/kube-controller-manager.yaml
etcd: etcd:
bin: etcd - /etc/etcd/etcd.conf
conf: /etc/etcd/etcd.conf
flanneld: flanneld:
bin: flanneld - /etc/sysconfig/flanneld
conf: /etc/sysconfig/flanneld
# Installation
# Configure kubernetes component binaries and paths to their configuration files.
installation:
default:
config: /etc/kubernetes/config
master:
bin:
apiserver: apiserver
scheduler: scheduler
controller-manager: controller-manager
conf:
apiserver: /etc/kubernetes/apiserver
scheduler: /etc/kubernetes/scheduler
controller-manager: /etc/kubernetes/controller-manager
node: node:
bin: bins:
kubelet: kubelet kubelet:
proxy: proxy - "hyperkube kubelet"
conf: - "kubelet"
kubelet: /etc/kubernetes/kubelet proxy:
proxy: /etc/kubernetes/proxy - "kube-proxy"
federated: - "hyperkube proxy"
bin: - "proxy"
apiserver: federation-apiserver confs:
controller-manager: federation-controller-manager kubelet:
- /etc/kubernetes/kubelet.conf
- /etc/kubernetes/kubelet
proxy:
- /etc/kubernetes/proxy.conf
- /etc/kubernetes/proxy
- /etc/kubernetes/addons/kube-proxy-daemonset.yaml
kops:
config: /etc/kubernetes/config
master:
bin:
apiserver: apiserver
scheduler: scheduler
controller-manager: controller-manager
conf:
apiserver: /etc/kubernetes/apiserver
scheduler: /etc/kubernetes/scheduler
controller-manager: /etc/kubernetes/apiserver
node:
bin:
kubelet: kubelet
proxy: proxy
conf:
kubelet: /etc/kubernetes/kubelet
proxy: /etc/kubernetes/proxy
federated: federated:
bin: bins:
apiserver: federation-apiserver fedapiserver:
controller-manager: federation-controller-manager - "hyperkube federation-apiserver"
- "kube-federation-apiserver"
- "federation-apiserver"
fedcontrollermanager:
- "hyperkube federation-controller-manager"
- "kube-federation-controller-manager"
- "federation-controller-manager"
hyperkube: optional:
config: /etc/kubernetes/config bins:
master: etcd:
bin: - "etcd"
apiserver: hyperkube apiserver flanneld:
scheduler: hyperkube scheduler - "flanneld"
controller-manager: hyperkube controller-manager
conf:
apiserver: /etc/kubernetes/manifests/kube-apiserver.yaml
scheduler: /etc/kubernetes/manifests/kube-scheduler.yaml
controller-manager: /etc/kubernetes/manifests/kube-controller-manager.yaml
node:
bin:
kubelet: hyperkube kubelet
proxy: hyperkube proxy
conf:
kubelet: /etc/kubernetes/kubelet
proxy: /etc/kubernetes/addons/kube-proxy-daemonset.yaml
federated:
bin:
apiserver: hyperkube federation-apiserver
controller-manager: hyperkube federation-controller-manager
kubeadm:
config: /etc/kubernetes/config
master:
bin:
apiserver: kube-apiserver
scheduler: kube-scheduler
controller-manager: kube-controller-manager
conf:
apiserver: /etc/kubernetes/admin.conf
scheduler: /etc/kubernetes/scheduler.conf
controller-manager: /etc/kubernetes/controller-manager.conf
node:
bin:
kubelet: kubelet
proxy: kube-proxy
conf:
kubelet: /etc/kubernetes/kubelet.conf
proxy: /etc/kubernetes/proxy.conf
federated:
bin:
apiserver: kube-federation-apiserver
controller-manager: kube-federation-controller-manager