CIS Docker Benchmark
Profile Applicability: Level 2 Description: Docker's base device size should not be modified unless necessary. The base device size determines t...
Mon, 28 Apr, 2025 at 3:20 AM
Profile Applicability: Level 2 Description: Authorization for Docker client commands must be enabled to restrict access to Docker functionality. Thi...
Mon, 28 Apr, 2025 at 3:26 AM
Profile Applicability: Level 2 Description: Centralized and remote logging should be configured for Docker to ensure that all container logs are aggr...
Mon, 28 Apr, 2025 at 3:32 AM
Profile Applicability: Level 1 Description: Docker containers should be restricted from acquiring new privileges (such as root privileges) during ru...
Mon, 28 Apr, 2025 at 3:39 AM
Profile Applicability: Level 1 Description: Docker's live restore feature allows containers to continue running even when the Docker daemon is ...
Mon, 28 Apr, 2025 at 6:48 AM
Profile Applicability: Level 1 Description: The Docker Userland Proxy is used for network address translation (NAT) and port forwarding for containe...
Tue, 29 Apr, 2025 at 1:53 AM
Profile Applicability: Level 2 Description: A daemon-wide custom seccomp profile should be applied to Docker to enhance the security posture of the c...
Tue, 29 Apr, 2025 at 1:56 AM
Profile Applicability: Level 1 Description: Experimental features in Docker provide advanced functionalities that may not be fully tested or stable....
Tue, 29 Apr, 2025 at 2:01 AM
Profile Applicability: Level 1 Description: The docker.service file, typically located in /etc/systemd/system/ or /lib/systemd/system/, is responsib...
Tue, 29 Apr, 2025 at 2:06 AM
Profile Applicability: Level 1 Description: The docker.service file, which is used by systemd to manage the Docker daemon, must have appropriate fil...
Tue, 29 Apr, 2025 at 2:12 AM