[docker] add image for setting recommended sysctls

[schallert]

This PR provides users with a docker image and Kubernetes DaemonSet that
will set the host's sysctls to our recommended settings. We try to be
careful about this and recommend pinning to a docker image SHA so that
the content is immutable (i.e. someone who controlled our Quay repo
couldn't run arbitrary root containers on hosts that have the image).

[codecov]

Codecov Report

Merging #1436 into master will increase coverage by <.1%.
The diff coverage is n/a.

@@           Coverage Diff            @@
##           master   #1436     +/-   ##
========================================
+ Coverage    70.8%   70.9%   +<.1%     
========================================
  Files         836     836             
  Lines       71507   71507             
========================================
+ Hits        50696   50701      +5     
+ Misses      17514   17511      -3     
+ Partials     3297    3295      -2

Flag	Coverage Δ
#aggregator	82.3% <ø> (-0.1%)	⬇️
#cluster	85.8% <ø> (ø)	⬆️
#collector	63.7% <ø> (ø)	⬆️
#dbnode	80.8% <ø> (ø)	⬆️
#m3em	73.2% <ø> (ø)	⬆️
#m3ninx	74.2% <ø> (ø)	⬆️
#m3nsch	51.1% <ø> (ø)	⬆️
#metrics	17.6% <ø> (ø)	⬆️
#msg	75% <ø> (+0.1%)	⬆️
#query	65.8% <ø> (-0.1%)	⬇️
#x	76% <ø> (ø)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update b3cf54e...74a4a48. Read the comment docs.

[codecov]

Codecov Report

Merging #1436 into master will decrease coverage by 11.3%.
The diff coverage is n/a.

@@            Coverage Diff            @@
##           master   #1436      +/-   ##
=========================================
- Coverage    70.9%   59.5%   -11.4%     
=========================================
  Files         836     571     -265     
  Lines       71507   48466   -23041     
=========================================
- Hits        50709   28876   -21833     
+ Misses      17506   17283     -223     
+ Partials     3292    2307     -985

Flag	Coverage Δ
#aggregator	61.1% <ø> (-21.2%)	⬇️
#cluster	51.8% <ø> (-34.1%)	⬇️
#collector	47.9% <ø> (-15.8%)	⬇️
#dbnode	74.2% <ø> (-6.6%)	⬇️
#m3em	68.3% <ø> (-4.9%)	⬇️
#m3ninx	71.2% <ø> (-3%)	⬇️
#m3nsch	51.1% <ø> (ø)	⬆️
#metrics	17.6% <ø> (ø)	⬆️
#msg	74.9% <ø> (-0.2%)	⬇️
#query	65.6% <ø> (-0.3%)	⬇️
#x	76% <ø> (ø)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 7143653...bb1881a. Read the comment docs.

[prateek]

LGTM, maybe add this to the existing Kube guide too

[richardartoul]

LGTM

[richardartoul]

@schallert Should we add a comment somewhere that explains all the places you need to update values if you want to change the recommended defaults? Need to update constants in code, constants in documentation, and also this script now