Thank you! We appreciate your enthusiasm! :-) From technology perspective nothing prevent kloak to d...

neo2006 • yesterday at 8:56 PM • 2 replies • view on HN

Thank you! We appreciate your enthusiasm! :-) From technology perspective nothing prevent kloak to do rewrite on any workload scheduler or even without a scheduler (native Linux). The main challenge is to find a flow to signal to kloak what to rewrite and how to inject kloaked secrets to the workload. TBH supporting other technologies is not something we thought about but we can definitely consider if there is an ask for it from the community.

Replies

cassianoleal • yesterday at 10:40 PM

Yes, please! :)

subhobroto • yesterday at 10:50 PM

> The main challenge is to find a flow to signal to kloak what to rewrite and how to inject kloaked secrets to the workload

Would it be realistic or reasonable to detect a header like `X-kloak-ENABLED` or specific endpoints in the case of HTTP?

Similar for wire protocols like PostgreSQL or gRPC?

Our would a usermode proxy be easier but not preferred due to overhead?

➕ show 1 reply

alt Hacker News

Replies