Cloud and IaC security

Least-privilege security groups, Kubernetes NetworkPolicy and pod security, and safer Terraform.

5 challenges · ~3 h · every step earns its own verified proof

0/5 solved

Least-privilege cloud security groupmedium~30 min
Open each port only to where it should come from, not to the whole internet.
The backend accepts traffic from anywheremedium~35 min
Kubernetes is allow-by-default. Add a default-deny and one targeted allow.
Secure a Kubernetes Deploymentmedium~35 min
Limits, non-root, and probes, the baseline an admission controller expects.
An IAM policy that grants everythingmedium~30 min
Replace a wildcard IAM policy with the exact actions and resources a role needs.
Stop a public S3 bucket in Terraformmedium~25 min
Block public access and turn on encryption before the bucket ever ships.