address review comments

Author: neogopher

vcluster/learn-how-to/hardening-guide/README.mdx

@@ -74,7 +74,7 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   name: audit-config
-  namespace: <vcluster-namespace>
+  namespace: vcluster-my-vcluster
 data:
   audit-policy.yaml: |
     apiVersion: audit.k8s.io/v1
@@ -140,7 +140,7 @@ resources:
 
 Create a secret in the vCluster namespace from the configuration file.
 ```bash
-kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n <vcluster-namespace>
+kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n vcluster-my-vcluster
 ```
 
 Finally, create the vCluster referring the secret as:
@@ -180,7 +180,7 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   name: admission-control
-  namespace: <vcluster-namespace>
+  namespace: vcluster-my-vcluster
 data:
   admission-control.yaml: |
     apiVersion: apiserver.config.k8s.io/v1

vcluster/learn-how-to/hardening-guide/control-plane-components.mdx

@@ -392,7 +392,7 @@ vcluster create my-vcluster -f vcluster.yaml --connect=false
 
 Run the following command against the vCluster pod:
 ```bash
-kubectl exec -n vcluster-my-vcluster my-vcluster-0 -- ps -ef | grep kube-apiserver
+kubectl exec -n vcluster-my-vcluster my-vcluster-0 -c syncer -- ps -ef | grep kube-apiserver
 ```
 Verify that the --anonymous-auth argument is set to false.
 
@@ -452,7 +452,7 @@ vcluster create my-vcluster -f vcluster.yaml --connect=false
 
 Run the following command against the vCluster pod:
 ```bash
-kubectl exec -n vcluster-my-vcluster my-vcluster-0 -- ps -ef | grep kube-apiserver
+kubectl exec -n vcluster-my-vcluster my-vcluster-0 -c syncer -- ps -ef | grep kube-apiserver
 ```
 Verify that the `DenyServiceExternalIPs' argument exist as a string value in --enable-admission-plugins.
 
@@ -525,7 +525,7 @@ vcluster create my-vcluster -f vcluster.yaml --connect=false
 
 Run the following command against the vCluster pod:
 ```bash
-kubectl exec -n vcluster-my-vcluster my-vcluster-0 -- ps -ef | grep kube-apiserver
+kubectl exec -n vcluster-my-vcluster my-vcluster-0 -c syncer -- ps -ef | grep kube-apiserver
 ```
 Verify that the --authorization-mode argument exists and is set to a value to include Node.
 
@@ -1216,7 +1216,7 @@ resources:
 ```
 Create a secret in the vCluster namespace from the configuration file.
 ```bash
-kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n <vcluster-namespace>
+kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n vcluster-my-vcluster
 ```
 
 Finally, create the vCluster referring the secret as:
@@ -1289,7 +1289,7 @@ resources:
 ```
 Create a secret in the vCluster namespace from the configuration file.
 ```bash
-kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n <vcluster-namespace>
+kubectl create secret generic encryption-config --from-file=encryption-config.yaml -n vcluster-my-vcluster
 ```
 
 Finally, create the vCluster referring the secret as:

vcluster/learn-how-to/hardening-guide/control-plane.mdx

@@ -40,7 +40,7 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   name: audit-config
-  namespace: <vcluster-namespace>
+  namespace: vcluster-my-vcluster
 data:
   audit-policy.yaml: |
     apiVersion: audit.k8s.io/v1
@@ -69,15 +69,15 @@ controlPlane:
         mountPath: /etc/kubernetes
 ```
 
+**Audit:**
 Create the vCluster using the above values file.
 ```bash
 vcluster create my-vcluster -f vcluster.yaml --connect=false
 ```
 
-**Audit:**
 Run the following command against the vCluster pod:
 ```bash
-kubectl exec -n vcluster-my-vcluster my-vcluster-0 -- ps -ef | grep kube-apiserver
+kubectl exec -n vcluster-my-vcluster my-vcluster-0 -c syncer -- ps -ef | grep kube-apiserver
 ```
 Verify that the --audit-policy-file is set.
 
@@ -107,7 +107,7 @@ apiVersion: v1
 kind: ConfigMap
 metadata:
   name: audit-config
-  namespace: <vcluster-namespace>
+  namespace: vcluster-my-vcluster
 data:
   audit-policy.yaml: |
     apiVersion: audit.k8s.io/v1