Verify that TLS CA certificate file permissions are set to 444 or more restrictive

Details

https://docs.docker.com/articles/certificates/

2.http://docs.docker.com/articles/https/

Solution

chmod 444 This would set the file permissions of the TLS CA file to ‘444’.Impact-None.Default Value-By default, the permissions for TLS CA certificate file might not be ‘444’. The default file
permissions are governed by the system or user specific umask values.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/517

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

800-53|CM-6b.

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles