CIS Kubernetes Benchmark
Profile Applicability: Level 1 Description: Ensure that the --peer-cert-file and --peer-key-file arguments are set appropriately in the Kubernetes A...
Fri, 9 May, 2025 at 7:07 AM
Profile Applicability: Level 1 Description: Ensure that the --auto-tls argument is not set to true in the Kubernetes API server configuration. This ...
Fri, 9 May, 2025 at 7:29 AM
Profile Applicability: Level 1 Description: Ensure that the --client-cert-auth argument is set to true in the Kubernetes API server configuration. T...
Fri, 9 May, 2025 at 7:35 AM
Profile Applicability: Level 1 Description: The NET_RAW capability in Linux allows containers to use raw sockets, which can be used for low-level ne...
Mon, 12 May, 2025 at 12:50 AM
Profile Applicability: Level 1 Description: Running containers as the root user can expose your system to unnecessary security risks. This check ens...
Mon, 12 May, 2025 at 1:00 AM
Profile Applicability: Level 1 Description: The allowPrivilegeEscalation option in Kubernetes controls whether a container can gain additional privi...
Mon, 12 May, 2025 at 1:09 AM
Profile Applicability: Level 1 Description: Sharing the host’s network namespace grants containers access to the host’s networking stack, which may ...
Mon, 12 May, 2025 at 2:07 AM
Profile Applicability: Level 1 Description: The --authorization-mode argument in Kubernetes determines how the API server authorizes user requests. ...
Mon, 12 May, 2025 at 2:12 AM
Profile Applicability: Level 1 Description: Sharing the host IPC (Inter-Process Communication) namespace allows containers to access the same IPC re...
Mon, 12 May, 2025 at 2:16 AM
Profile Applicability: Level 1 Description: The --client-ca-file argument in Kubernetes specifies the location of the Certificate Authority (CA) cer...
Mon, 12 May, 2025 at 2:22 AM