Podman is a tool for managing Kubernetes clusters on the local machine or a remote host. Podman is part of the Kubernetes project and is used to create and manage persistent volumes, monitor and manage pods, and orchestrate the deployment, scaling, and management of applications on a cluster. It is used by system administrators and software engineers to automate the management of Kubernetes clusters. The Podman project website reports that an average of 14.6 million Pods are created, scheduled, and scaled every day, with an average of 73.6 million Pods per month. This makes it an important target for adversaries. An adversary may seek to utilize vulnerabilities in Podman to launch a Pod takeover or a DoS attack.

Overview of Podman Vulnerabilities

The Podman project website reported that on December 4, 2017, an issue was detected with the cluster API where it allowed unauthorized read access to Kubernetes API objects.
Podman is a tool for managing Kubernetes clusters on the local machine or a remote host. Podman is part of the Kubernetes project and is used to create and manage persistent volumes, monitor and manage pods, and orchestrate the deployment, scaling, and management of applications on a cluster. It is used by system administrators and software engineers to automate the management of Kubernetes clusters. The Podman project website reports that an average of 14.6 million Pods are created, scheduled, and scaled every day, with an average of 73.6 million Pods per month. This makes it an important target for adversaries. An adversary may seek to utilize vulnerabilities in Podman to launch a Pod takeover or a DoS attack.

Install and Run Podman

First, clone the repository to GitHub. Next, install and run Podman. If you're on a remote host (e.g., in a VM) you'll need to ssh into the VM and run podman there as well.

Timeline

Published on: 04/29/2022 16:15:00 UTC
Last modified on: 07/23/2022 10:04:00 UTC

References