Kubernetes Objective Questions and Answers - Set 2

This Kubernetes Security quiz contains carefully curated objective questions with correct answers and clear explanations. It is designed for DevOps engineers, platform teams, SREs, and cloud security learners to test your skills across cluster hardening, workload security, identity & access, network policies, secrets management, and modern supply chain security best practices. This is part 2 of the series.

Practice Kubernetes MCQs with Detailed Explanations

Answer at least 12 questions to submit and verify answers.

16 Which best practice reduces the risk of secret leakage through logs? Medium

17 Which Kubernetes feature limits what syscalls a container can invoke? High

18 What is the security benefit of using non-root containers? Medium

19 Which Kubernetes setting prevents service account tokens from being automatically mounted? High

20 Which attack vector is mitigated by restricting hostPath volumes? Medium

21 Which control enforces container filesystem immutability at runtime? Medium

22 Which Kubernetes feature helps isolate workloads at the kernel level? Medium

23 Which policy reduces the risk of pulling untrusted images from public registries? High

24 Which configuration prevents pods from sharing the host’s network namespace? Medium

25 Which Kubernetes control plane data store must be protected with strong access controls and encryption? Medium

26 Which feature limits container access to host process IDs? High

27 Which security practice hardens nodes against container escape vulnerabilities? Medium

28 Which mechanism enforces that only signed manifests are applied to the cluster? High

29 Which Kubernetes feature reduces lateral movement by default-denying traffic? Medium

30 Which approach best secures secrets for workloads needing dynamic credentials? High