Revision 1.6Nov 25, 2025
Functional Update
- 1.1.11 Ensure that the etcd data directory permissions are set to 700 or more restrictive
- 1.1.12 Ensure that the etcd data directory ownership is set to etcd:etcd
- 1.1.7 Ensure that the etcd pod specification file permissions are set to 600 or more restrictive
- 1.1.8 Ensure that the etcd pod specification file ownership is set to root:root
- 2.1 Ensure that the --cert-file and --key-file arguments are set as appropriate - cert
- 2.1 Ensure that the --cert-file and --key-file arguments are set as appropriate - key
- 2.2 Ensure that the --client-cert-auth argument is set to true
- 2.3 Ensure that the --auto-tls argument is not set to true
- 2.4 Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate - cert
- 2.4 Ensure that the --peer-cert-file and --peer-key-file arguments are set as appropriate - key
- 2.5 Ensure that the --peer-client-cert-auth argument is set to true
- 2.6 Ensure that the --peer-auto-tls argument is not set to true
Miscellaneous
- Metadata updated.
- References updated.
