Detections
Analytics
CIS Docker 1.12.0 v1.0.0 L2 Docker
Audit Details
Name: CIS Docker 1.12.0 v1.0.0 L2 Docker
Updated: 6/17/2024
Authority: CIS
Plugin: Unix
Revision: 1.18
Estimated Item Count: 14
File Details
Filename: CIS_Docker_1.12.0_v1.0.0_L2.audit
Size: 27 kB
MD5: 492ed191f33b7fd5621cb3e45404e851
SHA256: 65aefe5caaa3ed090a42c4ac013264b8fd86846a82fe1f07bea53e027eb58a43
Audit Items
| Description | Categories |
|---|---|
| 2.8 Enable user namespace support | |
| 2.9 Confirm default cgroup usage | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.10 Do not change base device size until needed | |
| 2.11 Use authorization plugin | IDENTIFICATION AND AUTHENTICATION |
| 2.12 Configure centralized and remote logging | AUDIT AND ACCOUNTABILITY |
| 4.5 Enable Content trust for Docker | SYSTEM AND INFORMATION INTEGRITY |
| 4.8 Remove setuid and setgid permissions in the images | |
| 4.11 Install verified packages only | CONFIGURATION MANAGEMENT |
| 5.1 Do not disable AppArmor | ACCESS CONTROL |
| 5.2 Verify SELinux security options, if applicable | ACCESS CONTROL |
| 5.22 Do not docker exec commands with privileged option | |
| 5.23 Do not docker exec commands with user option | |
| 5.29 Do not use Docker's default bridge docker0 | CONFIGURATION MANAGEMENT |
| CIS_Docker_1.12.0_v1.0.0_L2.audit Level 2 |