DISA STIG Kubernetes V1R4

Details Kubernetes allows a user to configure kubelets with dynamic configurations. When dynamic configuration is used, the kubelet will watch...

Details By default, the API server will listen on two ports. One port is the secure port and the other...

Details Kubernetes allows alpha API calls within the API server. The alpha features are disabled by default since they are...

Details Kubelet serves a small REST API with read access to port 10255. The read-only port for Kubernetes provides no...

Details When Kubernetes is started, components and user services are started. For auditing startup events, and events for components and...

Details By default, the API server will listen on two ports and addresses. One address is the secure address and...

Details By default, the API server will listen on what is rightfully called the secure port, port 6443. Any requests...

Details The Kubernetes API Server controls Kubernetes via an API interface. A user who has access to the API essentially...

Details The manifest files contain the runtime configuration of the API server, proxy, scheduler, controller, and etcd. If an attacker...

Details The kubelet configuration file contains the runtime configuration of the kubelet service. If an attacker can gain access to...