-
Use the [CIS benchmarks](https://learn.cisecurity.org/benchmarks).
-
The company I'm working with have been using docker-bench-security and docker-bench-test on Linux with great results. We're now heavily migrating a bunch of Windows apps across to Docker and it would …
sbutt updated
3 years ago
-
Describe the bug
A clear and concise description of what the bug is.
If you set up docker in rootless mode, you can not run the test
Setup docker rootless based on
https://docs.docker.com/e…
-
### Problem Statement
I'm not an expert in this, but I've been looking at cis-docker rules for improving the security of the sentry deployment, see for example here: https://www.aquasec.com/cloud-nat…
-
**Rancher Server Setup**
- Rancher version: v2.7.1
- Installation option (Docker install/Helm Chart): Docker
**Information about the Cluster**
- Kubernetes version: v1.24.10-rancher4-1
- Cluste…
-
Profile Applicability:
Level 2 - Server
Level 2 - Workstation
Description:
The squashfs filesystem type is a compressed read-only Linux filesystem embedded in
small footprint systems. A squas…
-
Profile Applicability:
Level 2 - Server
Level 2 - Workstation
Description:
The udf filesystem type is the universal disk format used to implement ISO/IEC 13346
and ECMA-167 specifications. Th…
-
**Describe the bug**
The CNI configuration file at /etc/cni/net.d/10-antrea.conflist gets the permissions 644 even though 600 should suffice. This is marked as a failure by the CIS Kubernetes Bench…
-
v1.3.5 was just released; https://github.com/docker/docker-bench-security/releases/tag/v1.3.5.
The image needs to be signed by Docker, have a :latest and a version tag added to the image and publishe…
-
Hey, please check and, if you consider them acceptable, add them.
SQL-like syntax tool Steampipe.io + CIS and CVE audits
https://steampipe.io/docs
CloudQuery: SQL-like syntax tool
https://clo…