Do not store secrets in Dockerfiles

Details

https://github.com/docker/docker/issues/13490

2.http://12factor.net/config

3.https://avicoder.me/2016/07/22/Twitter-Vine-Source-code-dump/

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Do not store any kind of secrets within Dockerfiles.Impact-You would need to identify a way to handle secrets for your Docker images.Default Value-By default, there are no restrictions on storing config secrets in the Dockerfiles.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/517

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Unix.

References

800-53|CM-7b.

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles