github
/
k3s
mirror of https://github.com/k3s-io/k3s
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
74,207 Commits
32 Branches
881 Tags
633 MiB
Commit Graph

19 Commits (da22fcaac0581c4688cab3a0ff83a6b863c956b4)

Author SHA1 Message Date
Sandeep Rajan aa11f6c298 Bump CoreDNS version to 1.3.1 2019-01-31 16:55:02 -05:00
Kubernetes Prow Robot c501d464af
Merge pull request #73267 from rajansandeep/proxytoforward 
Use forward plugin instead of proxy plugin in the default configuration of CoreDNS
 2019-01-29 11:32:28 -08:00
Sandeep Rajan e9220dd408 add prometheus port 2019-01-25 11:29:03 +05:30
Sandeep Rajan c346ae1e49 Use forward plugin instead of proxy in the default configuration 2019-01-24 17:28:55 +05:30
Kubernetes Prow Robot baaaa15fdf
Merge pull request #69940 from MarcPow/master 
Bind coredns containers to  linux nodes to avoid Windows scheduling
 2019-01-23 12:19:53 -08:00
Jordan Liggitt cc680273e8 Change add-on manifests to apps/v1 2018-12-19 17:30:59 -05:00
k8s-ci-robot 29eb75b2c5
Merge pull request #70868 from justinsb/coredns_like_kubedns_respect_taints 
CoreDNS should not tolerate master taints
 2018-11-15 23:52:27 -08:00
Justin SB 0d57176f40
CoreDNS should respect user taints 
Otherwise users will be surprised when CoreDNS starts running on their
masters, where kube-dns did not.

Issue #70851
 2018-11-09 09:25:35 -05:00
Sandeep Rajan 4161277b9b update version of CoreDNS to 1.2.6 2018-11-08 08:53:33 -05:00
Marc Power eb818f95d1 Bind coredns containers to linux nodes to avoid Windows scheduling 2018-10-26 11:47:17 -07:00
Chris O'Haver 0cfb4bbe2c make coredns kubeup default, update manifest 2018-10-18 14:52:38 -04:00
Francois Tur 5c20fff19d
Revert "Add DNS pod resource monitoring option" 2018-09-19 14:54:29 -04:00
Chris O'Haver 7ea51a551c do not merge: test coredns with mem bump 2018-09-18 12:06:44 -04:00
Sandeep Rajan 989f6667d2 prep for 1.12 2018-08-30 11:43:36 -04:00
Sandeep Rajan 8798640f21 add scrape port to service 2018-06-28 13:26:11 -04:00
Kubernetes Submit Queue 2f011d01fa
Merge pull request #64473 from nberlee/master 
Automatic merge from submit-queue. If you want to cherry-pick this change to another branch, please follow the instructions <a href="https://github.com/kubernetes/community/blob/master/contributors/devel/cherry-picks.md">here</a>.

Drop capabilities of CoreDNS container and run in read-only

**What this PR does / why we need it**: Make the CoreDNS container more secure by dropping (root) capabilities. Improve the integrity of the of the container by running the whole container in read-only.

**Which issue(s) this PR fixes** *(optional, in `fixes #<issue number>(, fixes #<issue_number>, ...)` format, will close the issue(s) when PR gets merged)*:
Fixes #

**Special notes for your reviewer**:
Same [changes](aba0245609) as in the CoreDNS deployment repository.
**Release note**:

```release-note
Kubeadm: Make CoreDNS run in read-only mode and drop all unneeded privileges 
```
 2018-06-05 10:23:19 -07:00
Nico Berlee 7ee5729eba
Run CoreDNS container only with CAP_NET_BIND_SERVICE, drop all other (root) privileges. 
Run filesystem of container and config in read-only mode.
 2018-06-05 08:22:47 +02:00
Sandeep Rajan ab0a421e8d coredns to gcr.io repo 2018-06-04 16:44:42 -04:00
Sandeep Rajan 753632d85b create coredns and kube-dns folders 2018-05-29 11:52:57 -04:00