@@_baumi_ Google's Container OS is for the instance on which Kubernetes or Docker runs, while Alpine is for creating the container (image) to run on Kubernetes/Docker. Google's Container OS reduces the attack surface for the machine on which you run containers while bases like Alpine reduces the attack surface for the containers themselves.
Terrible recommendation. Alpine comes with busybox, which is a binary that contains a lot of other binaries such as netcat. Use distroless containers, aka containers with no binaries.
@@EliteRoxor - You are watching this two years late dude. Distroless weren't as practical back then. And the best recommendation for least vulnerabilities is to go with 'Scratch'.
Hi, My question is, How can we access the container images deployed in compute engines.How we will check whether container images are running inside compute engine. Thanks.
CloudRun is pretty much USELESS for us. Each job has a MAX 1 hour time limit. Good for toy jobs IMHO. I want to ask WHO in Google Cloud set this MAX time limit?
![Ice On My Teeth - ATEEZ エイティーズ 에이티즈 [Music Bank] | KBS WORLD TV 241115](http://i.ytimg.com/vi/c-n92OgbbwA/mqdefault.jpg)
3 years later and still very relevant! thanks for the awesome (🙂) video Alexis!!
Well, except that Container Registry is deprecated in favor of Artifact Registry
👍
Also use the minimal container base image eg. Alpine, to reduce attack surface due to vulnerabilities.
isn'T that what Googles Container OS Image in GCE is for?
@@_baumi_
Google's Container OS is for the instance on which Kubernetes or Docker runs, while Alpine is for creating the container (image) to run on Kubernetes/Docker.
Google's Container OS reduces the attack surface for the machine on which you run containers while bases like Alpine reduces the attack surface for the containers themselves.
@@imranzunzani3120 of course you’re right, thanks for clarifying
Terrible recommendation. Alpine comes with busybox, which is a binary that contains a lot of other binaries such as netcat.
Use distroless containers, aka containers with no binaries.
@@EliteRoxor - You are watching this two years late dude. Distroless weren't as practical back then. And the best recommendation for least vulnerabilities is to go with 'Scratch'.
What about AppEngine Flexible Environment?
I was thinking just the same. App Engine Flexible supports deployments of Docker conatiners.
Top 3 they have mentioned.. Its not in their top 3
Thats the same as cloud run I'd say
My notes.
02:06 Cloud Run.
04:33 GCR
Hi,
My question is,
How can we access the container images deployed in compute engines.How we will check whether container images are running inside compute engine.
Thanks.
Thank you. for google cloud platflorm.
Grace mollison
Thank you, it was very useful video for me.
Solid video right here.
4:15 - does that include auto OS patches?
Can't you reach it with an App Engine Flexible?
Which solution is the most affordable?
I'd say the most Serverless of them all - Cloud Run, but YMMV
THANKS YOU
This guy reminds of Chandler Bing when he works in Telsa 😅
How does GKE take backups?
I would like to google cloud run endpoint service proxy (version 2) api gateway (swagger firebase base64 token)
You did not mention GAE Flex 🤔
I was thinking the same hmm!
"Top 3" ;-)
They are phasing that one out it seems to me.
CloudRun is pretty much USELESS for us. Each job has a MAX 1 hour time limit. Good for toy jobs IMHO. I want to ask WHO in Google Cloud set this MAX time limit?
Thanks a lot.
3:20 GCE
👍👍👍