CIS Kubernetes Benchmark
Profile Applicability: Level 1 Description: The hostPID setting in Kubernetes allows containers to share the host's process ID (PID) namespace. ...
Mon, 12 May, 2025 at 2:23 AM
Profile Applicability: Level 1 Description: The --read-only-port argument in Kubernetes controls whether the Kubelet exposes a read-only HTTP server...
Mon, 12 May, 2025 at 2:28 AM
Profile Applicability: Level 1 Description: Privileged containers have elevated access to the host system and can perform operations that normal co...
Mon, 12 May, 2025 at 2:32 AM
Profile Applicability: Level 1 Description: The --streaming-connection-idle-timeout argument in Kubernetes controls the timeout duration for idle st...
Mon, 12 May, 2025 at 2:34 AM
Profile Applicability: Level 1 Description: The --make-iptables-util-chains argument in Kubernetes controls whether the Kubelet creates custom iptab...
Mon, 12 May, 2025 at 2:41 AM
Profile Applicability: Level 1 Description: A policy control mechanism in Kubernetes is crucial for managing and enforcing security, resource, and o...
Mon, 12 May, 2025 at 2:45 AM
Profile Applicability: Level 1 Description: The --hostname-override argument in Kubernetes allows the Kubernetes component (such as the Kubelet or A...
Mon, 12 May, 2025 at 2:47 AM
Profile Applicability: Level 1 Description: Service accounts in Kubernetes are used to provide an identity for processes running in pods. By default...
Mon, 12 May, 2025 at 2:57 AM
Profile Applicability: Level 1 Description: Webhook configuration objects in Kubernetes, such as MutatingAdmissionWebhook and ValidatingAdmissionWeb...
Mon, 12 May, 2025 at 3:04 AM
Profile Applicability: Level 1 Description: The --tls-cert-file and --tls-private-key-file arguments in Kubernetes control the paths to the certifi...
Mon, 12 May, 2025 at 3:22 AM