Detections
Analytics

CIS Docker v1.3.1 L1 Linux Host OS

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Docker v1.3.1 L1 Linux Host OS

Updated: 4/12/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.7

Estimated Item Count: 21

Audit Items

DescriptionCategories
1.1.1 Ensure a separate partition for containers has been created
1.1.2 Ensure only trusted users are allowed to control Docker daemon
1.1.3 Ensure auditing is configured for the Docker daemon
1.1.6 Ensure auditing is configured for Docker files and directories - /etc/docker
1.1.7 Ensure auditing is configured for Docker files and directories - docker.service
1.1.8 Ensure auditing is configured for Docker files and directories - containerd.sock
1.1.9 Ensure auditing is configured for Docker files and directories - docker.socket
1.1.10 Ensure auditing is configured for Docker files and directories - /etc/default/docker
1.1.11 Ensure auditing is configured for Docker files and directories - /etc/docker/daemon.json
1.1.12 Ensure auditing is configured for Docker files and directories - /etc/containerd/config.toml
1.1.13 Ensure auditing is configured for Docker files and directories - /etc/sysconfig/docker
1.1.14 Ensure auditing is configured for Docker files and directories - /usr/bin/containerd
1.1.15 Ensure auditing is configured for Docker files and directories - /usr/bin/containerd-shim
1.1.16 Ensure auditing is configured for Docker files and directories - /usr/bin/containerd-shim-runc-v1
1.1.17 Ensure auditing is configured for Docker files and directories - /usr/bin/containerd-shim-runc-v2
1.1.18 Ensure auditing is configured for Docker files and directories - /usr/bin/runc
1.2.1 Ensure the container host has been Hardened
1.2.2 Ensure that the version of Docker is up to date
6.1 Ensure that image sprawl is avoided
6.2 Ensure that container sprawl is avoided
CIS_Docker_v1.3.1_L1_Linux_Host_OS.audit from CIS Docker Benchmark v1.3.1