Detections
Analytics
CIS Docker 1.13.0 v1.0.0 L2 Docker
Audit Details
Name: CIS Docker 1.13.0 v1.0.0 L2 Docker
Updated: 4/12/2023
Authority: CIS
Plugin: Unix
Revision: 1.16
Estimated Item Count: 14
File Details
Filename: CIS_Docker_1.13.0_L2_v1.0.0.audit
Size: 23.7 kB
MD5: 43fffe6dada662bea8604053a4ac6054
SHA256: d326703fe6525884b577824e134b40f74e20948bfa2807c659d615d44114eb29
Audit Items
| Description | Categories |
|---|---|
| 2.8 Enable user namespace support | |
| 2.9 Confirm default cgroup usage | SYSTEM AND COMMUNICATIONS PROTECTION |
| 2.10 Do not change base device size until needed | |
| 2.11 Use authorization plugin | IDENTIFICATION AND AUTHENTICATION |
| 2.12 Configure centralized and remote logging | AUDIT AND ACCOUNTABILITY |
| 2.22 Use Docker's secret management commands for managing secrets in a Swarm cluster | CONFIGURATION MANAGEMENT |
| 4.5 Enable Content trust for Docker | SYSTEM AND INFORMATION INTEGRITY |
| 4.8 Remove setuid and setgid permissions in the images | |
| 4.11 Install verified packages only | CONFIGURATION MANAGEMENT |
| 5.2 Verify SELinux security options, if applicable | ACCESS CONTROL |
| 5.22 Do not docker exec commands with privileged option | |
| 5.23 Do not docker exec commands with user option | |
| 5.29 Do not use Docker's default bridge docker0 | CONFIGURATION MANAGEMENT |
| CIS_Docker_1.13.0_L2_v1.0.0.audit Level 2 |