Detections
Analytics
CIS Docker 1.12.0 v1.0.0 L2 Docker
Audit Details
Name: CIS Docker 1.12.0 v1.0.0 L2 Docker
Updated: 4/12/2023
Authority: CIS
Plugin: Unix
Revision: 1.17
Estimated Item Count: 14
File Details
Filename: CIS_Docker_1.12.0_v1.0.0_L2.audit
Size: 27 kB
MD5: a6003f318b9deb939e7da9194d47d396
SHA256: a51f7c718969344c2fba449dd4a732d79a6401e54a8e05ed64f71e67664183b3
Audit Items
| Description | Categories |
|---|---|
| 2.8 Enable user namespace support | |
| 2.9 Confirm default cgroup usage | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.10 Do not change base device size until needed | |
| 2.11 Use authorization plugin | IDENTIFICATION AND AUTHENTICATION |
| 2.12 Configure centralized and remote logging | AUDIT AND ACCOUNTABILITY |
| 4.5 Enable Content trust for Docker | SYSTEM AND INFORMATION INTEGRITY |
| 4.8 Remove setuid and setgid permissions in the images | |
| 4.11 Install verified packages only | CONFIGURATION MANAGEMENT |
| 5.1 Do not disable AppArmor | ACCESS CONTROL |
| 5.2 Verify SELinux security options, if applicable | ACCESS CONTROL |
| 5.22 Do not docker exec commands with privileged option | |
| 5.23 Do not docker exec commands with user option | |
| 5.29 Do not use Docker's default bridge docker0 | CONFIGURATION MANAGEMENT |
| CIS_Docker_1.12.0_v1.0.0_L2.audit Level 2 |