Verify that docker.socket file permissions are set to 644 or more restrictive

Details

https://docs.docker.com/articles/basics/#bind-docker-to-another-hostport-or-a-unix-socket

Solution

#> chmod 644 /usr/lib/systemd/system/docker.socket
This would set the file permissions for this file to ‘644’.

Impact-None.

Default Value-This file may not be present on the system. In that case, this recommendation is not
applicable. By default, if the file is present, the file permissions for this file are correctly set
to ‘644’.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/514

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

800-53|CM-6b.
CSCv6|3.1

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles