The kubelet configuration file should have permissions of 600 or more restrictive

Documentos > Datadog Security > OOTB Rules > The kubelet configuration file should have permissions of 600 or more restrictive

Set up the kubernetes integration.

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

Ensure that if the kubelet refers to a configuration file with the --config argument, that file has permissions of 600 or more restrictive. The kubelet reads various parameters, including security settings, from the config file. The file should be writable by only the administrators on the system.

Remediation

Run the following command based on the file located in the --config parameter:

chmod 600 /var/lib/kubelet/config.yaml