CIS Docker Community Edition V1.1.0 L1 Docker

Details Verify that the /etc/default/docker file ownership and group-ownership is correctly set to root. Rationale: /etc/default/docker file contains sensitive parameters...

Details Verify that the /etc/default/docker file permissions are correctly set to 644 or more restrictive. Rationale: /etc/default/docker file contains sensitive...

Details Verify that the /etc/docker directory ownership and group-ownership is correctly set to root. Rationale: /etc/docker directory contains certificates and...

Details Verify that the /etc/docker directory permissions are correctly set to 755 or more restrictive. Rationale: /etc/docker directory contains certificates...

Details Verify that the docker.service file permissions are correctly set to 644 or more restrictive. Rationale: docker.service file contains sensitive...

Details Verify that the Docker socket file is owned by root and group-owned by docker. Rationale: Docker daemon runs as...

Details Verify that the docker.socket file ownership and group ownership is correctly set to root. Rationale: docker.socket file contains sensitive...

Details Verify that all the registry certificate files (usually found under /etc/docker/certs.d/ directory) are owned and group-owned by root. Rationale:...

Details Verify that all the registry certificate files (usually found under /etc/docker/certs.d/ directory) have permissions of 444 or more restrictive....

Details Verify that the TLS CA certificate file (the file that is passed alongwith –tlscacert parameter) is owned and group-owned...