From 831a5c976c76b1febd10ed82b83047bde367d15c Mon Sep 17 00:00:00 2001 From: Dalton Hubble Date: Sat, 9 Dec 2017 22:38:27 -0800 Subject: [PATCH] Add Kubernetes Dashboard warning and improve changelog --- CHANGES.md | 13 +++++++++++-- docs/addons/dashboard.md | 3 +++ 2 files changed, 14 insertions(+), 2 deletions(-) diff --git a/CHANGES.md b/CHANGES.md index 6c09f70c..7dd4a31e 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -4,12 +4,21 @@ Notable changes between versions. ## Latest -* Kubernetes v1.8.5 -* Recommend Docker 17.09 and validate against it +* Kubernetes [v1.8.5](https://github.com/kubernetes/kubernetes/blob/master/CHANGELOG-1.8.md#v185) +* Recommend Container Linux [images](https://coreos.com/releases/) with Docker 17.09 * Container Linux stable, beta, and alpha now provide Docker 17.09 (instead of 1.12). Recommend images which provide 17.09. * Older clusters (with CLUO addon) auto-update node's Container Linux version and will begin using Docker 17.09. +* Fix race where `etcd-member.service` could fail to resolve peers ([#69](https://github.com/poseidon/typhoon/pull/69)) + +#### Bare-Metal + +* Add kubelet `--volume-plugin-dir` flag to allow flexvolume providers ([#61](https://github.com/poseidon/typhoon/pull/61)) + +#### Addons + +* Deploying the Kubernetes Dashboard is discouraged ## v1.8.4 diff --git a/docs/addons/dashboard.md b/docs/addons/dashboard.md index c128b5e2..3e57972d 100644 --- a/docs/addons/dashboard.md +++ b/docs/addons/dashboard.md @@ -1,5 +1,8 @@ # Kubernetes Dashboard +!!! warning + The Kubernetes Dashboard takes [unusual approaches](https://github.com/kubernetes/dashboard/wiki/Access-control#authorization-header) to security and is often a point of security escalations. We recommend you do don't deploy it and get familiar with `kubectl`, if possible. + The Kubernetes [Dashboard](https://github.com/kubernetes/dashboard) provides a web UI to manage a Kubernetes cluster for those who prefer an alternative to `kubectl`. ## Create