arno/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2025-07-20 05:28:10 +00:00
Code Issues Releases Wiki Activity

fix wrong use of flag in test_items found in 4.13 and 4.14

Browse Source 
Fixes #1491
This commit is contained in:
mozillazg 2023-11-25 07:17:24 +00:00
parent fac90f756e
commit 3cfa88cc8a
6 changed files with 0 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
cfg/ack-1.0/node.yaml
View File

@ -45,8 +45,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "644" value: "644"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -60,8 +58,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig

4
cfg/cis-1.20/node.yaml
View File

@ -46,8 +46,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "644" value: "644"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -61,8 +59,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig

4
cfg/cis-1.23/node.yaml
View File

@ -45,8 +45,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "644" value: "644"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -60,8 +58,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig

4
cfg/cis-1.24-microk8s/node.yaml
View File

@ -45,8 +45,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "600" value: "600"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -60,8 +58,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig

4
cfg/cis-1.24/node.yaml
View File

@ -45,8 +45,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "600" value: "600"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -60,8 +58,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig

4
cfg/cis-1.7/node.yaml
View File

@ -45,8 +45,6 @@ groups:
compare: compare:
op: bitmask op: bitmask
value: "600" value: "600"
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, For example,
@ -60,8 +58,6 @@ groups:
bin_op: or bin_op: or
test_items: test_items:
- flag: root:root - flag: root:root
- flag: "$proxykubeconfig"
set: false
remediation: | remediation: |
Run the below command (based on the file location on your system) on the each worker node. Run the below command (based on the file location on your system) on the each worker node.
For example, chown root:root $proxykubeconfig For example, chown root:root $proxykubeconfig