3.18 Ensure that daemon.json file permissions are set to 644 or more restrictive

Information

Verify that the daemon.json file permissions are correctly set to 644 or more restrictive.
Rationale:
daemon.json file contains sensitive parameters that may alter the behavior of docker daemon. Hence, it should be writable only by root to maintain the integrity of the file.

Solution

chmod 644 /etc/docker/daemon.json
This would set the file permissions for this file to 644.
Impact:
None.
Default Value:
This file may not be present on the system. In that case, this recommendation is not applicable.

See Also

https://workbench.cisecurity.org/files/1726

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CSCv6|14.4

Plugin: Unix

Control ID: 77312eecc13158b2770c80619282d1778c3ba509d6fb1f92c6e9a93f2eaf8b4d