mirrors/talos
1
0
Fork 0
mirror of https://github.com/siderolabs/talos.git synced 2025-08-19 13:41:13 +02:00
Code Issues Packages Projects Releases Wiki Activity
talos/docs/website/pages/index.vue
Tim Gerla 8610a3f387 docs: more whitespace, wording, and responsiveness changes 
- tweak whitespace between sections
- fix the top menu for small screens
- fix the terminal overlapping on small screens
- tweak wording on a few of the bullet points
- clean up the display of the "certified" logo on small screens
- clean up the "features" grid on medium/large screens

Signed-off-by: Tim Gerla <tim@gerla.net>
2019-10-28 10:50:01 -07:00

230 lines
7.1 KiB
Vue
Raw Blame History

<template>
<div id="landing-page" class="c-rich-text">
<div class="w-auto lg:w-1/2 h-auto mx-auto md:mt-10 mb-16 px-4">
<div class="text-center py-8 m-0">
<h1>What is Talos?</h1>
</div>
<div class="flex flex-wrap justify-center items-center">
<div class="px-4 md:px-2 md:w-3/4 text-xl text-gray-700">
<p>
Talos is a modern OS designed to be secure, immutable, and minimal.
Its purpose is to host Kubernetes clusters, so it is tightly
integrated with Kubernetes.
</p>
<p>
Talos is based on the Linux kernel, and supports most cloud
platforms, bare metal, and most virtualization platforms. All system
management is done via an API, and there is no shell or interactive
console.
</p>
</div>
<div class="w-1/3 md:w-1/6 md:ml-8 pt-4 md:pt-0">
<a
href="https://landscape.cncf.io/category=certified-kubernetes-installer&format=card-mode&grouping=category"
target="_blank"
>
<img
src="/images/certified-kubernetes-color.png"
alt="Certified Kubernetes Logo"
/></a>
</div>
</div>
</div>
<div class="w-3/4 mx-auto">
<div class="justify-center">
<div class="text-center md:py-8">
<h1>Why Talos?</h1>
</div>
<div class="md:grid grid-columns-3 grid-gap-12 justify-center">
<div class="px-4">
<h2 class="text-center">Security</h2>
<div>
Talos reduces your attack surface by practicing the Principle of
Least Privilege (PoLP) and by securing the API with mutual TLS
(mTLS) authentication.
</div>
</div>
<div class="px-4">
<h2 class="text-center">Predictability</h2>
<div>
Talos eliminates unneeded variables and reduces unknown factors in
your environment by employing immutable infrastructure ideology.
</div>
</div>
<div class="px-4">
<h2 class="text-center">Evolvability</h2>
<div>
Talos simplifies your architecture and increases your ability to
easily accommodate future changes.
</div>
</div>
</div>
</div>
</div>
<div class="w-3/4 mx-auto mb-20 pt-4">
<div class="flex flex-col justify-center">
<div class="text-center">
<h2>API Driven</h2>
<Terminal></Terminal>
</div>
</div>
</div>
<div class="w-1/2 h-auto mx-auto mb-20">
<div class="text-center pt-6">
<h1>Built with Modern Technology</h1>
</div>
<div class="flex flex-wrap md:flex-no-wrap justify-center">
<div class="flex items-center lg:m-6 p-2">
<a href="https://www.musl-libc.org/" target="_blank"
><img class="logo logo-musl" src="/images/musl-logo.png" alt=""
/></a>
</div>
<div class="flex items-center lg:m-6 p-2">
<a href="https://golang.org/" target="_blank"
><img class="logo" src="/images/go-logo.png" alt=""
/></a>
</div>
<div class="flex items-center lg:m-6 p-2">
<a href="https://grpc.io/" target="_blank"
><img class="logo" src="/images/grpc-logo.png" alt=""
/></a>
</div>
<div class="flex items-center lg:m-6 p-2">
<a href="https://containerd.io/" target="_blank"
><img class="logo" src="/images/containerd-logo.png" alt=""
/></a>
</div>
</div>
</div>
<div class="w-3/4 h-auto mx-auto pb-12 mb-20">
<div class="text-center">
<h1>Features</h1>
</div>
<div class="md:grid grid-columns-3 grid-gap-12 justify-center">
<div class="w-full">
<h2 class="text-center">Minimal</h2>
<p>
Talos consists of only a handful of binaries and shared libraries:
just enough to run containerd and a small set of system services.
</p>
<p>
This aligns with NIST's recommendation in the
<a
href="https://www.nist.gov/publications/application-container-security-guide"
target="_blank"
>
Application Container Security Guide</a
>.
</p>
</div>
<div>
<h2 class="text-center">Hardened</h2>
<div>
<p>Talos is hardened by design and configuration:</p>
<ul class="ml-8">
<li>
Built with the
<a
href="https://kernsec.org/wiki/index.php/Kernel_Self_Protection_Project"
target="_blank"
>Kernel Self Protection Project</a
>
configuration recommendations.
</li>
<li>
All access to the API is secured with Mutual TLS.
</li>
<li>
Settings and configuration described in the
<a
href="https://www.cisecurity.org/benchmark/kubernetes/"
target="_blank"
>CIS</a
>
guidelines are applied by default.
</li>
</ul>
</div>
</div>
<div>
<h2 class="text-center">Immutable</h2>
<div>
Talos improves its security posture further by mounting the root
filesystem as read-only and removing any host-level access by
traditional means such as a shell and SSH.
</div>
</div>
</div>
<div
class="md:grid grid-columns-2 grid-gap-12 justify-center md:w-2/3 md:mx-auto"
>
<div>
<h2 class="text-center">Ephemeral</h2>
<div>
Talos runs in memory from a SquashFS, and persists nothing, leaving
the primary disk entirely to Kubernetes.
</div>
</div>
<div>
<h2 class="text-center">Current</h2>
<div>
We are committed to an <tt>n-1</tt> adoption rate of upstream
Kubernetes, and the latest LTS Linux kernel will always be used.
</div>
</div>
<div>
<img
class="hidden"
src="https://placeholder.pics/svg/300/DEDEDE/555555/some%20nifty%20image%20here"
/>
</div>
</div>
</div>
</div>
</template>
<script>
import Terminal from '~/components/Terminal.vue'
export default {
name: 'Index',
components: {
Terminal
}
}
</script>
<style>
#landing-page {
height: 100%;
background: url(~assets/images/chips_bg_v1.svg) no-repeat center center fixed;
-webkit-background-size: contain;
-moz-background-size: contain;
-o-background-size: contain;
background-size: contain;
background-position: center bottom;
}
.logo {
display: block;
width: 189px;
height: auto;
margin: auto;
}
.logo-musl {
width: 107px;
}
.certified {
@apply m-5;
height: auto;
width: 400px;
}
</style>
Reference in New Issue View Git Blame Copy Permalink