1.2.1 Ensure the container host has been Hardened

Information

A container host is able to run one or more containers. It is of utmost importance to harden the host to mitigate host security misconfiguration.

Rationale:

You should follow infrastructure security best practices and harden your host OS. Keeping the host system hardened will ensure that host vulnerabilities are mitigated. Not hardening the host system could lead to security exposures and breaches.

Impact:

None.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

You may consider various CIS Security Benchmarks for your container host. If you have other security guidelines or regulatory requirements to adhere to, please follow them as suitable in your environment.

Default Value:

By default, the host has factory setting and is not hardened.

See Also

https://workbench.cisecurity.org/benchmarks/11818

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|5

Plugin: Unix

Control ID: 2e07e5c094bd64b34ca618ec438d088097dc37ea4df698b62d330a224d10f44a