One thing that I think is very much still missing from the Kubernetes Documentation space is hardening guidelines.
There's a lot of moving parts in there and some of the defaults for common install methods like kubeadm might be a bit of a surprise to people (e.g. the kubelet port being default open and allowing someone to take complete control of the cluster without authentication (https://raesene.github.io/blog/2016/10/08/Kubernetes-From-Co...)
Ideally something which broke out the various components and had guidelines for possible security options would be a great addition, I think.
There's a lot of moving parts in there and some of the defaults for common install methods like kubeadm might be a bit of a surprise to people (e.g. the kubelet port being default open and allowing someone to take complete control of the cluster without authentication (https://raesene.github.io/blog/2016/10/08/Kubernetes-From-Co...)
Ideally something which broke out the various components and had guidelines for possible security options would be a great addition, I think.