Security Questions

A platform engineer must use the Docker CLI and `kubectl` against a Mirantis Kubernetes Engine cluster after authenticating through the web interface....

Which workload type can consume Docker secrets directly according to the official swarm secrets model?

A platform admin wants one team to manage workloads only inside a specific Mirantis Kubernetes Engine namespace collection while denying broader clust...

Which Linux kernel feature is primarily used by Docker to account for and limit CPU and memory usage?

An application needs a non-sensitive configuration file shared with a service. Which Docker object is more appropriate than a secret?

A security review covers Windows containers that consume Docker secrets. Which statement matches Docker's documented caveat?

Which Linux kernel feature provides isolation such as separate process IDs and network stacks for containers?

What does `docker swarm init` create for the swarm PKI unless the operator specifies an external CA?

What information is contained in a swarm join token?

How does Docker start containers in terms of Linux capabilities by default?

What is the documented size limit for the payload of a single Docker secret?

What does Docker document about the handling of swarm secrets in transit and at rest?

A repository has three image enforcement rules in MSR. What must be true before an image can be pulled?

An MSR administrator wants to change the registry-wide image enforcement policy for every repository. Who can do that according to Mirantis documentat...

Why is Docker often described as having a major security boundary at the daemon?