servala/documentation
5
1
Fork 0
Code Issues Pull requests 1 Packages 1 Activity Actions

ADR 002 Kubernetes Distribution #2

Merged
tobru merged 3 commits from adr/k8s-distro into main 2025-12-16 08:20:29 +00:00
Conversation 2 Commits 3 Files changed 1 +2
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files
Showing only changes of commit f6aa543dfc - Show all commits

2
docs/ADRs/adr002.md
View file

@ -48,6 +48,8 @@ We evaluated the following Kubernetes distributions:
**k3s**: Lightweight and easy to deploy, but lacks full integration with the underlying operating system. We would still need to manage a traditional Linux distribution separately, which adds operational burden. **k3s**: Lightweight and easy to deploy, but lacks full integration with the underlying operating system. We would still need to manage a traditional Linux distribution separately, which adds operational burden.
**Flatcar Container Linux**: A container-optimized OS forked from CoreOS Container Linux. Provides automatic updates, immutable infrastructure patterns, and is designed for running containers. However, it still requires a separate Kubernetes distribution to be installed on top (like k3s or kubeadm), adding another layer to manage. While more secure than traditional Linux distributions, it retains SSH access and a shell, which increases the attack surface compared to Talos.
tobru marked this conversation as resolved Outdated
marco.deluca commented 2025-12-09 08:26:15 +00:00
Outdated
Copy link

Have we looked at Flatcar? It goes into the same family of immutable OS but configurations are handled quite differently. I doubt that it would be the right one for us but it's worth considering and adding to the list of things we evaluated.

Have we looked at Flatcar? It goes into the same family of immutable OS but configurations are handled quite differently. I doubt that it would be the right one for us but it's worth considering and adding to the list of things we evaluated.
**Talos Linux**: Purpose-built for Kubernetes with an immutable, API-driven design. No SSH, no shell, minimal attack surface. The OS and Kubernetes are managed as a single unit with declarative configuration. Produces consistent behavior across all environments. **Talos Linux**: Purpose-built for Kubernetes with an immutable, API-driven design. No SSH, no shell, minimal attack surface. The OS and Kubernetes are managed as a single unit with declarative configuration. Produces consistent behavior across all environments.
## Decision ## Decision