Details
Set Docker daemon log level to info.
Rationale:
Setting up an appropriate log level, configures the Docker daemon to log events that you would want to review later. A base log level of info and above would capture all logs except debug logs. Until and unless required, you should not run Docker daemon at debug log level.
Solution
Run the Docker daemon as below:
dockerd –log-level=”info”
Impact:
None.
Default Value:
By default, Docker daemon is set to log level of info.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Audit and Accountability.This control applies to the following type of system Unix.