1.4 Remove all non-essential services from the host - Sockets

Information

Ensure that the host running the docker daemon is running only the essential services.It is a good practice to implement only one primary function per server to prevent functions that require different security levels from co-existing on the same server. Additionally, mixing various application environments on the same machine may hinder the granular administration of the respective applications.

Solution

Move all other services within containers controlled by Docker or to other systems.
Impact-None. Default Value-Not Applicable.

See Also

https://workbench.cisecurity.org/files/516

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Unix

Control ID: debc8843f1c93c814dc99420a7c5d88915e44d2bc202fb5890b55c1e689c25be