Name: CIS Docker 1.12.0 v1.0.0 L2 Docker
Updated: 6/17/2024
Authority: CIS
Plugin: Unix
Revision: 1.18
Estimated Item Count: 14
Filename: CIS_Docker_1.12.0_v1.0.0_L2.audit
Size: 27 kB
Description | Categories |
---|---|
2.8 Enable user namespace support | |
2.9 Confirm default cgroup usage | SYSTEM AND COMMUNICATIONS PROTECTION |
2.10 Do not change base device size until needed | |
2.11 Use authorization plugin | IDENTIFICATION AND AUTHENTICATION |
2.12 Configure centralized and remote logging | AUDIT AND ACCOUNTABILITY |
4.5 Enable Content trust for Docker | SYSTEM AND INFORMATION INTEGRITY |
4.8 Remove setuid and setgid permissions in the images | |
4.11 Install verified packages only | CONFIGURATION MANAGEMENT |
5.1 Do not disable AppArmor | ACCESS CONTROL |
5.2 Verify SELinux security options, if applicable | ACCESS CONTROL |
5.22 Do not docker exec commands with privileged option | |
5.23 Do not docker exec commands with user option | |
5.29 Do not use Docker's default bridge docker0 | CONFIGURATION MANAGEMENT |
CIS_Docker_1.12.0_v1.0.0_L2.audit Level 2 |