VIEW RULE IN DATADOG VIEW MISCONFIGURATIONS

Description

If the kubelet refers to a configuration file with the --config argument, ensure that the file has permissions set to 644 or to a more restrictive setting. If a file is specified, you should restrict its file permissions to maintain the integrity of the file. The file should be writable only by the administrators on the system.

Remediation

Run the following command to fix the kubelet configuration file’s permissions:

chmod 644 /etc/kubernetes/kubelet/kubelet-config.json

Note: The path above is the default location in EKS.