U.S. Independence Day Deal! Unlock 25% OFF Today – Limited-Time Offer - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

Linux Foundation CKS Exam - Topic 1 Question 45 Discussion

TaskAnalyze and edit the given Dockerfile /home/candidate/KSSC00301/Docker file (based on the ubuntu:16.04 image), fixing two instructions present in the file that are prominent security/best-practice issues.Analyze and edit the given manifest file /home/candidate/KSSC00301/deployment.yaml, fixing two fields present in the file that are prominent security/best-practice issues.
A) Explanation:

Linux Foundation CKS Exam - Topic 1 Question 45 Discussion

Actual exam question for Linux Foundation's CKS exam
Question #: 45
Topic #: 1
[All CKS Questions]

Task

Analyze and edit the given Dockerfile /home/candidate/KSSC00301/Docker file (based on the ubuntu:16.04 image), fixing two instructions present in the file that are prominent security/best-practice issues.

Analyze and edit the given manifest file /home/candidate/KSSC00301/deployment.yaml, fixing two fields present in the file that are prominent security/best-practice issues.

Show Suggested Answer Hide Answer
Suggested Answer: A

by Tasia at Dec 13, 2023, 06:29 PM

Limited Time Offer

25%

Off

Get Premium CKS Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Flo
7 months ago
I disagree, sometimes older images are more stable for production.
upvoted 0 times
...
Pedro
7 months ago
Don't forget to set user permissions properly in the Dockerfile!
upvoted 0 times
...
Lamar
7 months ago
Wait, are we really still using Ubuntu 16.04? That's surprising!
upvoted 0 times
...
Jettie
7 months ago
Totally agree, outdated images can be a huge risk!
upvoted 0 times
...
Toshia
8 months ago
You should always use the latest base image for security.
upvoted 0 times
...
Timothy
8 months ago
I remember that specifying resource limits in the deployment.yaml is important for security, but I can't remember the exact syntax to use.
upvoted 0 times
...
Delsie
8 months ago
I believe we should avoid using `latest` tags in the Dockerfile, but I might be mixing that up with something else.
upvoted 0 times
...
Corinne
8 months ago
For the manifest file, I feel like I need to check the security context settings. I practiced a similar question, but I can't recall the exact fields to modify.
upvoted 0 times
...
Cheryl
8 months ago
I think I remember that using a specific user instead of root in the Dockerfile is a best practice, but I'm not sure how to implement it correctly.
upvoted 0 times
...
Marvel
8 months ago
Ah, a classic security-focused question. I've got a good handle on Docker and Kubernetes best practices, so I think I can tackle this one.
upvoted 0 times
...
Lorenza
8 months ago
This seems straightforward enough, but I want to make sure I don't miss anything. I'll need to really understand the context and potential risks.
upvoted 0 times
...
Carma
8 months ago
Alright, time to put my security knowledge to the test. I'll need to reference best practices and common vulnerabilities to tackle this question.
upvoted 0 times
...
Stefany
8 months ago
Okay, let's see what we've got here. The instructions mention fixing two issues in each file, so I'll need to be thorough in my analysis.
upvoted 0 times
...
Roy
8 months ago
Hmm, this looks like a tricky one. I'll need to carefully review the Dockerfile and deployment.yaml files to identify the security/best-practice issues.
upvoted 0 times
...
Yoko
9 months ago
This question seems straightforward. I think the key is to focus on the program closure process and what could prevent it from being completed.
upvoted 0 times
...
Vonda
9 months ago
I'm a little confused by all the different syntax options here. I think option B with the DELIMITER AS ',' might work, but I'm not 100% sure. I'll need to carefully read through the question and think it through step-by-step.
upvoted 0 times
...

Save Cancel