Kubernetes Objective Questions and Answers - Set 3

This Kubernetes Security quiz contains carefully curated objective questions with correct answers and clear explanations. It is designed for DevOps engineers, platform teams, SREs, and cloud security learners to test your skills across cluster hardening, workload security, identity & access, network policies, secrets management, and modern supply chain security best practices. This is part 3 of the series.

Practice Kubernetes MCQs with Detailed Explanations

Answer at least 12 questions to submit and verify answers.

31 Which configuration prevents privilege escalation via Linux capabilities? Medium

32 Which security risk is introduced by using the :latest image tag in production? Medium

33 Which control plane endpoint should be restricted to private networks? High

34 Which mechanism prevents pods from accessing the host IPC namespace? High

35 Which practice improves detection of compromised workloads? Medium

36 Which security boundary is most commonly bypassed during container escape exploits? High

37 Which configuration limits the set of users a container process can run as? Medium

38 Which Kubernetes feature enforces policy decisions at admission time? Medium

39 Which practice reduces the attack surface of container images? Medium

40 Which security concern is mitigated by enabling node-level firewall rules? High

41 Which setting prevents containers from sharing the host PID namespace? Medium

42 Which approach best secures inter-service traffic inside the cluster? High

43 Which security measure prevents unauthorized configuration drift? High

44 Which feature restricts pods from mounting arbitrary volumes on the host? Medium

45 Which risk is most directly addressed by enabling encryption in transit for etcd communication? High