Revert "Disable resource protection via admission-controller in legacy clusters"

Author: linki

cluster/config-defaults.yaml

@@ -695,15 +695,10 @@ teapot_admission_controller_configmap_deletion_protection_factories_enabled: "tr
 # enable the rolebinding admission-controller webhook which validates rolebindings and clusterrolebindings
 teapot_admission_controller_enable_rolebinding_webhook: "true"
 
-{{ if eq .Cluster.Provider "zalando-eks" }}
-# enable the resource protection admission webhook which prevents users from accessing system resources
+# enable the generic deny-all admission webhook which rejects all requests it receives
 teapot_admission_controller_enable_write_protection_webhook: "true"
-# configure the behaviour of the resource protection admission webhook, `true` blocks everything, `false` allows everything
+# configure the behaviour of the deny-all admission webhook, `true` blocks everything, `false` allows everything
 teapot_admission_controller_prevent_write_operations: "true"
-{{ else }}
-teapot_admission_controller_enable_write_protection_webhook: "false"
-teapot_admission_controller_prevent_write_operations: "false"
-{{ end }}
 
 # Enable and configure Pod Security Policy rules implemented in admission-controller.
 teapot_admission_controller_pod_security_policy_enabled: "true"