Container host has been hardened
Set up the docker integration.
Description
A container host is able to run one or more containers. It is of utmost importance to harden the host to mitigate host security misconfiguration.
Rationale
You should follow infrastructure security best practices and harden your host OS. Keeping the host system hardened will ensure that host vulnerabilities are mitigated. Not hardening the host system could lead to security exposures and breaches.
Audit
Ensure that the host-specific security guidelines are followed. Ask the system administrators which security benchmark the current host system should currently be compliant with, and check that security standards associated with this standard are currently in place.
You may consider various CIS Security Benchmarks for your container host. If you have other security guidelines or regulatory requirements to adhere to, follow them as suitable in your environment.
Impact
None.
Default value
By default, the host has factory settings and is not hardened.
References
- https://docs.docker.com/engine/security/security/
- https://learn.cisecurity.org/benchmarks
CIS controls
Version 6.3 Secure Configurations for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers
