Cristian Klein

icon indicating a website link cristian.kleinlabs.eu

icon company @elastisys icon location Malmö Metropolitan Area, Sweden icon location Cloud architect, speaker and researcher. Father of two. Piano torturer. Pro tip: Prove to me that you read this far by ending each sentence with "quack".

Results 89 comments of Cristian Klein

Unexpected setuid call by non-sudo events contain no details

I re-ran my test with Falco 0.36.1. In the meantime, the "Unexpected setuid call" rule was moved to [falco-incubating_rules.yaml](https://github.com/falcosecurity/rules/blob/main/rules/falco-incubating_rules.yaml), so I had to do the following first: ```console $ sudo...

Unexpected setuid call by non-sudo events contain no details

> @cristiklein can you try using `evt.rawarg.uid` instead? Seems like `evt.rawarg.uid` is also empty: ```console cklein@minitruee:~$ sudo wget https://raw.githubusercontent.com/falcosecurity/rules/main/rules/falco-incubating_rules.yaml -O /etc/falco/rules.d/falco-incubating_rules.yaml --2023-10-19 17:27:48-- https://raw.githubusercontent.com/falcosecurity/rules/main/rules/falco-incubating_rules.yaml Resolving raw.githubusercontent.com (raw.githubusercontent.com)... 185.199.110.133, 185.199.109.133, 185.199.108.133,...

Update page for in-cluster network communication

@OlleLarsson A few more details: Currently, the Network Model page condenses too many networking topics. I'm listing them from "inside to outside": 1. How does Pod-to-Pod communication work inside the...

Harmonise names of CISO dashboards

Thanks @aarnq! I would also prefer the latter. Let's not forget to update the screenshots once we are done.

Support executing multiple process in parallel

Hi, Please take a look at this example: https://simpy.readthedocs.io/en/latest/examples/process_communication.html The last part features 3 processes: one `message_generator`, and two `message_consumer`.

Support executing multiple process in parallel

If you want to run the same simulation code with multiple parameters, then you can use the shell to run them in parallel: ``` ./simulate --seed 1 & ./simulate --seed...

Use vale to systematically improve the quality of pages

The `terms-internal` project could serve as inspiration for implementation.

Falco isn't described on a separate page

Is this what you are looking for? https://elastisys.io/compliantkubernetes/ciso-guide/intrusion-detection/ Granted, the page does not spell out Falco, nor how to configure it. We should import text from our [free guide](https://elastisys.com/free-guide-how-to-security-harden-kubernetes-against-unknown-unknowns/#intrusion-detection).

Improve disaster recovery page

May I suggest we do this a 2-person task with one person from the MSE team and one person from the PS team?

Resource not getting released

Hi, Can you try to things? (1) IIRC, you are not supposed to override the `id` method, since some frameworks might use that to establish object equality. (2) You are...