2.13 Disable operations on legacy registry (v1)

Information

The latest Docker registry is v2. All operations on the legacy registry version (v1) should be
restricted.Docker registry v2 brings in many performance and security improvements over v1. It
supports container image provenance and other security features such as image signing
and verification. Hence, operations on Docker legacy registry should be restricted.

Solution

Start the docker daemon as below-dockerd --disable-legacy-registryImpact-Legacy registry operations would be restricted.Default Value-By default, legacy registry operations are allowed.

See Also

https://workbench.cisecurity.org/files/517

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Unix

Control ID: 08f4629ba361b1d01932313231781dc0ee07b99fe366724c5ccff4c51045f16d