CIS Docker Community Edition V1.1.0 L1 Docker

Details Ensure that the container image is written either from scratch or is based on another established and trusted base...

Details Verify that the daemon.json file ownership and group-ownership is correctly set to root. Rationale: daemon.json file contains sensitive parameters...

Details Verify that the daemon.json file permissions are correctly set to 644 or more restrictive. Rationale: daemon.json file contains sensitive...

Details Verify that the Docker server certificate file (the file that is passed alongwith –tlscert parameter) is owned and group-owned...

Details Verify that the Docker server certificate file (the file that is passed alongwith –tlscert parameter) has permissions of 444...

Details Verify that the Docker server certificate key file (the file that is passed alongwith –tlskey parameter) is owned and...

Details Verify that the Docker server certificate key file (the file that is passed alongwith –tlskey parameter) has permissions of...

Details Verify that the docker.service file ownership and group-ownership are correctly set to root. Rationale: docker.service file contains sensitive parameters...

Details Verify that the docker.socket file permissions are correctly set to 644 or more restrictive. Rationale: docker.socket file contains sensitive...

Details Verify that the Docker socket file has permissions of 660 or more restrictive. Rationale: Only root and members of...