Revision 1.6Apr 24, 2021
Functional Update
- 3.1 Ensure that the docker.service file ownership is set to root:root
- 3.17 Ensure that the daemon.json file ownership is set to root:root
- 3.18 Ensure that daemon.json file permissions are set to 644 or more restrictive
- 3.19 Ensure that the /etc/default/docker file ownership is set to root:root
- 3.2 Ensure that docker.service file permissions are appropriately set
- 3.20 Ensure that the /etc/sysconfig/docker file ownership is set to root:root
- 3.21 Ensure that the /etc/sysconfig/docker file permissions are set to 644 or more restrictively
- 3.22 Ensure that the /etc/default/docker file permissions are set to 644 or more restrictively
- 3.3 Ensure that docker.socket file ownership is set to root:root
- 3.4 Ensure that docker.socket file permissions are set to 644 or more restrictive
- 7.2 Ensure that the minimum number of manager nodes have been created in a swarm
- 7.3 Ensure that swarm services are bound to a specific host interface
- 7.4 Ensure that all Docker swarm overlay networks are encrypted
- 7.7 Ensure that the swarm manager auto-lock key is rotated periodically
Informational Update
- 7.2 Ensure that the minimum number of manager nodes have been created in a swarm
- 7.3 Ensure that swarm services are bound to a specific host interface
- 7.4 Ensure that all Docker swarm overlay networks are encrypted
- 7.7 Ensure that the swarm manager auto-lock key is rotated periodically
Miscellaneous
- Metadata updated.
- References updated.