Armed with this new understanding of Kubernetes, we head back to our improvised remote shell on the survey application to gather information, escalate privileges, and hopefully find our way to interesting data about user targeting.
We resume our earlier shell access on the surveyapp container and take a look at the environment variables:
shell> env KUBERNETES_SERVICE_PORT_HTTPS=443 KUBERNETES_PORT_443_TCP_PORT=443 KUBERNETES_PORT_443_TCP=tcp://10.100.0.1:443
With our new knowledge, these environment variables take on a new meaning:
KUBERNETES_PORT_443_TCP must refer to the cluster IP hiding the API server, ...