CIS Docker 1.13.0 V1.0.0 L1 Docker

Details Verify that the ‘docker.socket’ file permissions are correctly set to ‘644’or more restrictive. Rationale: ‘docker.socket’ file contains sensitive parameters...

Details Verify that the Docker socket file has permissions of ‘660’or more restrictive. Rationale: Only ‘root’ and members of ‘docker’...

Details Verify that the ‘/etc/default/docker’ file ownership and group-ownership is correctly set to ‘root’. Rationale: ‘/etc/default/docker’file contains sensitive parameters that...

Details Verify that the ‘/etc/default/docker’ file permissions are correctly set to ‘644’or more restrictive. Rationale: ‘/etc/default/docker’ file contains sensitive parameters...

Details Verify that the /etc/docker directory ownership and group-ownership is correctly set to ‘root’. Rationale: ‘/etc/docker’ directory contains certificates and...

Details Verify that the /etc/docker directory permissions are correctly set to ‘755’or more restrictive. Rationale: ‘/etc/docker’ directory contains certificates and...

Details Verify that all the registry certificate files (usually found under/etc/docker/certs.d/directory) have permissions of ‘444’or more restrictive. Rationale: /etc/docker/certs.d/directory contains...

Details Verify that all the registry certificate files (usually found under/etc/docker/certs.d/directory) are owned and group-owned by ‘root’. Rationale: /etc/docker/certs.d/directory contains...

Details Verify that the TLS CAcertificate file (the file that is passed alongwith ‘–tlscacert’parameter) is owned and group-owned by ‘root’....

Details Verify that the TLS CAcertificate file (the file that is passed alongwith ‘–tlscacert’parameter) has permissions of ‘444’or more restrictive....