Ensure a separate partition for containers has been created
Details All Docker containers and their data and metadata is stored under /var/lib/docker directory. By default, /var/lib/docker would be mounted...
- Home
- Security Hardening
- CIS Docker Community Edition V1.1.0 L1 Linux Host OS
CIS Docker Community Edition V1.1.0 L1 Linux Host OS
Ensure auditing is configured for Docker files and directories – docker.service
Details Audit docker.service, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – docker.socket
Details Audit docker.socket, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – /etc/default/docker
Details Audit /etc/default/docker, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – /etc/docker
Details Audit /etc/docker. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker related files...Ensure auditing is configured for Docker files and directories – /etc/docker/daemon.json
Details Audit /etc/docker/daemon.json, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – /usr/bin/docker-containerd
Details Audit /usr/bin/docker-containerd, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – /usr/bin/docker-runc
Details Audit /usr/bin/docker-runc, if applicable. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker...Ensure auditing is configured for Docker files and directories – /var/lib/docker
Details Audit /var/lib/docker. Rationale: Apart from auditing your regular Linux file system and system calls, audit all Docker related files...Ensure auditing is configured for the docker daemon
Details Audit all Docker daemon activities. Rationale: Apart from auditing your regular Linux file system and system calls, audit Docker...