1
0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2024-12-20 21:58:06 +00:00

Correct 1.1.14 in 1.13/master.yaml

This commit is contained in:
Liz Rice 2019-05-14 19:37:44 +01:00
parent caf3fbd0a0
commit 02d5654cc1
No known key found for this signature in database
GPG Key ID: 837476CA214296CB

View File

@ -220,12 +220,15 @@ groups:
text: "Ensure that the admission control plugin NamespaceLifecycle is set (Scored)" text: "Ensure that the admission control plugin NamespaceLifecycle is set (Scored)"
audit: "ps -ef | grep $apiserverbin | grep -v grep" audit: "ps -ef | grep $apiserverbin | grep -v grep"
tests: tests:
bin_op: or
test_items: test_items:
- flag: "--disable-admission-plugins" - flag: "--disable-admission-plugins"
compare: compare:
op: nothave op: nothave
value: "NamespaceLifecycle" value: "NamespaceLifecycle"
set: true set: true
- flag: "--disable-admission-plugins"
set: false
remediation: | remediation: |
Edit the API server pod specification file $apiserverconf Edit the API server pod specification file $apiserverconf
on the master node and set the --disable-admission-plugins parameter to on the master node and set the --disable-admission-plugins parameter to