You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/azure-linux/intro-azure-linux.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -10,7 +10,7 @@ ms.date: 08/29/2023
10
10
11
11
# What is the Azure Linux Container Host for AKS?
12
12
13
-
The Azure Linux Container Host is an operating system image that's optimized for running container workloads on [Azure Kubernetes Service (AKS)](../../articles/aks/intro-kubernetes.md). It's maintained by Microsoft and based on Microsoft Azure Linux, an open-source Linux distribution created by Microsoft.
13
+
The Azure Linux Container Host is an operating system image that's optimized for running container workloads on [Azure Kubernetes Service (AKS)](../../articles/aks/intro-kubernetes.md). Microsoft maintains the Azure Linux Container Host and based it on Microsoft Azure Linux, an open-source Linux distribution created by Microsoft.
14
14
15
15
The Azure Linux Container Host is lightweight, containing only the packages needed to run container workloads. It's hardened based on significant validation tests and internal usage and is compatible with Azure agents. It provides reliability and consistency from cloud to edge across AKS, AKS for Azure Stack HCI, and Azure Arc. You can deploy Azure Linux node pools in a new cluster, add Azure Linux node pools to your existing clusters, or migrate your existing nodes to Azure Linux nodes.
16
16
@@ -25,10 +25,10 @@ The Azure Linux Container Host offers the following key benefits:
25
25
- Azure Linux has only 500 packages, and as a result takes up the least disk space by up to *5 GB* on AKS.
26
26
-**Reliable supply chain**
27
27
- The Linux and AKS teams at Microsoft build, sign, and validate the Azure Linux Container Host packages from source, and host packages and sources in Microsoft-owned and secured platforms.
28
-
- Each package update runs through a full set of unit tests and end-to-end testing on the existing image to prevent regressions. This, in combination with the smaller package count, reduces the chances of disruptive updates to applications.
28
+
- Each package update runs through a full set of unit tests and end-to-end testing on the existing image to prevent regressions. The extensive testing, in combination with the smaller package count, reduces the chances of disruptive updates to applications.
29
29
-**Secure by default**
30
-
- The Azure Linux Container Host has an emphasis on security and follows the secure-by-default principles, including using a hardened Linux kernel with Azure cloud optimizations and flags tuned for Azure. It also provides a reduced attack surface and eliminates patching and maintenance of unnecessary packages.
31
-
- Microsoft monitors the CVE database and releases security patches monthly and critical updates within days if required.
30
+
- The Azure Linux Container Host has an emphasis on security. It follows the secure-by-default principles, including using a hardened Linux kernel with Azure cloud optimizations and flags tuned for Azure. It also provides a reduced attack surface and eliminates patching and maintenance of unnecessary packages.
31
+
- Microsoft monitors the CVE database and releases security patches monthly and critical updates within days if necessary.
32
32
- Azure Linux passes all the CIS Level 1 benchmarks, making it the only Linux distribution on AKS that does so.
33
33
- For more information on Azure Linux Container Host security principles, see the [AKS security concepts](../../articles/aks/concepts-security.md).
0 commit comments