CIS Docker Benchmark : iCompaas Support

CIS Docker Benchmark

Ensure Mount Propagation Mode is Not Set to Shared

Profile Applicability: Level 1 Description: Mount propagation defines how mounts are shared between containers and the host. If mount propagation mo...

Tue, 29 Apr, 2025 at 11:56 PM

Ensure that the Host's UTS Namespace is Not Shared

Profile Applicability: Level 1 Description: The UTS (UNIX Time Sharing) namespace allows containers to have their own hostname and domain name. The...

Wed, 30 Apr, 2025 at 12:01 AM

Ensure that only needed ports are open on the container

Profile Applicability: Level 1 Description: Only the ports required for the container's functionality should be exposed to the host system. Exposin...

Wed, 30 Apr, 2025 at 12:04 AM

Ensure that the host's network namespace is not shared

Profile Applicability: Level 1 Description: Containers should not share the host's network namespace, as doing so can introduce risks by allowi...

Wed, 30 Apr, 2025 at 12:17 AM

Ensure that the Memory Usage for Containers is Limited

Profile Applicability: Level 1 Description: Limiting memory usage for containers ensures that containers do not consume excessive resources, prevent...

Wed, 30 Apr, 2025 at 12:27 AM

Ensure that, if applicable, an AppArmor Profile is enabled

Profile Applicability: Level 1 Description: AppArmor is an effective and easy-to-use Linux application security system available on certain Linux di...

Wed, 30 Apr, 2025 at 12:41 AM

« Previous
1
2
…
6
7
8
9
10
11
12
Next »