A GKE Cluster's kubelet configuration file should have permissions set to 600 or more restrictive

Cette page n'est pas encore disponible en français, sa traduction est en cours.
Si vous avez des questions ou des retours sur notre projet de traduction actuel, n'hésitez pas à nous contacter.

Description

If the kubelet refers to a configuration file with the --config argument, ensure that the file has permissions set to 600 or to a more restrictive setting. If a file is specified, you should restrict its file permissions to maintain the integrity of the file. The file should be writable only by the administrators on the system.

Remediation

Run the following command to fix the kubelet configuration file’s permissions:

chmod 600 /etc/kubernetes/kubelet/kubelet-config.json

Note: The path above is the default location.