Detections
Analytics
CIS Docker 1.13.0 v1.0.0 L2 Docker
Audit Details
Name: CIS Docker 1.13.0 v1.0.0 L2 Docker
Updated: 6/17/2024
Authority: CIS
Plugin: Unix
Revision: 1.17
Estimated Item Count: 14
File Details
Filename: CIS_Docker_1.13.0_L2_v1.0.0.audit
Size: 23.7 kB
MD5: 5bd8763267ee268ee7650dc47b74b87c
SHA256: 67d415d41e316c3e52d43f5289a535b07c977f6a234ba8f71a594dbef46f5fd3
Audit Items
| Description | Categories |
|---|---|
| 2.8 Enable user namespace support | |
| 2.9 Confirm default cgroup usage | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.10 Do not change base device size until needed | |
| 2.11 Use authorization plugin | IDENTIFICATION AND AUTHENTICATION |
| 2.12 Configure centralized and remote logging | AUDIT AND ACCOUNTABILITY |
| 2.22 Use Docker's secret management commands for managing secrets in a Swarm cluster | CONFIGURATION MANAGEMENT |
| 4.5 Enable Content trust for Docker | SYSTEM AND INFORMATION INTEGRITY |
| 4.8 Remove setuid and setgid permissions in the images | |
| 4.11 Install verified packages only | CONFIGURATION MANAGEMENT |
| 5.2 Verify SELinux security options, if applicable | ACCESS CONTROL |
| 5.22 Do not docker exec commands with privileged option | |
| 5.23 Do not docker exec commands with user option | |
| 5.29 Do not use Docker's default bridge docker0 | CONFIGURATION MANAGEMENT |
| CIS_Docker_1.13.0_L2_v1.0.0.audit Level 2 |