Verify that registry certificate file ownership is set to root:root

Details

https://docs.docker.com/articles/certificates/

2.http://docs.docker.com/reference/commandline/cli/#insecure-registries

Solution

chown root-root /etc/docker/certs.d//*
This would set the ownership and group-ownership for the registry certificate files to
‘root’.Impact-None.Default Value-By default, the ownership and group-ownership for registry certificate files is correctly set
to ‘root’.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/517

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

800-53|CM-6b.

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles