3.18 Verify that daemon.json file permissions are set to 644 or more restrictive

Information

Verify that the 'daemon.json' file permissions are correctly set to '644'or more restrictive.

Rationale:

'daemon.json' file contains sensitive parameters that may alter the behavior of docker daemon. Hence, it should be writable only by 'root' to maintain the integrity of the file.

Solution

chmod 644 /etc/docker/daemon.json



This would set the file permissions for this file to '644'.

Impact:

None.

Default Value:

This file may not be present on the system. In that case, this recommendation is not applicable.

See Also

https://workbench.cisecurity.org/files/1476

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b.

Plugin: Unix

Control ID: c7c20bf73f0399f2a50da9e98d38c0b73c35d002e722b927c3b40eba73ac8bc1