关于“Google Kubernetes Engine Security: Binary Authorization”的评价

Really interesting, maybe should be split into two demos. There were three typos with the demo instructions; I sorted them and got everything to work. The problems were: 1. Adding pop key to the attestor has “—public-key-file” when it should be “--pgp-key-fingerprint” 2. Creating the attestation has “—pgp-key-fingerprint” when it should be “--public-key-file” 3. When adding the attestor to the binary auth location, only the name of the attestor is required, not the whole path

Duncan H. · 评论over 6 years之前

近藤洋平 近. · 评论over 6 years之前

Jacob W. · 评论over 6 years之前

Tamas F. · 评论over 6 years之前

Tuo W. · 评论over 6 years之前

There are typos in 2 of the commands. Struggled with them for some time until finding the correct ones. Other than these issues, all was great.

Ahmet G. · 评论over 6 years之前

There is no way to even remember the steps and commands.

Jean-Charles V. · 评论over 6 years之前

Ganesh T. · 评论over 6 years之前

Nice.

Scott Q. · 评论over 6 years之前

Mahesh B. · 评论over 6 years之前

Fernanda M. · 评论over 6 years之前

Had to work around 2 errors in the documentation

James M. · 评论over 6 years之前

Matthew H. · 评论over 6 years之前

Yinli W. · 评论over 6 years之前

Svetlana Z. · 评论over 6 years之前

there are some commands which need to be updated like this "gcloud beta container binauthz attestations create \ --project="${ATTESTATION_PROJECT_ID}" \ --artifact-url="${IMAGE_TO_ATTEST}" \ --attestor="projects/${ATTESTOR_PROJECT_ID}/attestors/${ATTESTOR}" \ --signature-file=/tmp/generated_signature \ --public-key-id="$KEY_ID" " instructions still refer to fingerprint instead of "public-key-id"

Barkha K. · 评论over 6 years之前

Ajay G. · 评论over 6 years之前

Michael M. · 评论over 6 years之前

Please correct the below gcloud commands gcloud --project="${PROJECT_ID}" \ beta container binauthz attestors public-keys add \ --attestor="${ATTESTOR}" \ --pgp-public-key-file="${PGP_PUB_KEY}" gcloud beta container binauthz attestations create \ --artifact-url="${IMAGE_PATH}@${IMAGE_DIGEST}" \ --attestor="projects/${PROJECT_ID}/attestors/${ATTESTOR}" \ --signature-file=${GENERATED_SIGNATURE} \ --public-key-id="${PGP_FINGERPRINT}"

rajathithan r. · 评论over 6 years之前

Jason C. · 评论over 6 years之前

This lab needs updating - commands are no longer in beta and there are some commands that are really wrong. I gave feedback over chat.

Cato F. · 评论over 6 years之前

Sukesh H. · 评论over 6 years之前

Vivek Prasanna M. · 评论over 6 years之前

Kameswar A. · 评论over 6 years之前

Loris S. · 评论over 6 years之前