The kubelet configuration file should have permissions of 600 or more restrictive

kubernetes

Set up the kubernetes integration.

Description

Ensure that if the kubelet refers to a configuration file with the --config argument, that file has permissions of 600 or more restrictive. The kubelet reads various parameters, including security settings, from the config file. The file should be writable by only the administrators on the system.

Remediation

  1. Run the following command based on the file located in the --config parameter:
chmod 600 /var/lib/kubelet/config.yaml