From db096c9f51e1a167d7e15c57ef530f56fc423044 Mon Sep 17 00:00:00 2001
From: Julien Garcia Gonzalez <julien@giantswarm.io>
Date: Fri, 15 Jun 2018 15:49:55 +0200
Subject: [PATCH 1/2] Rule node 2.2.4 is not correct

---
 cfg/1.8/node.yaml | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/cfg/1.8/node.yaml b/cfg/1.8/node.yaml
index 7d43356..bfaf6f9 100644
--- a/cfg/1.8/node.yaml
+++ b/cfg/1.8/node.yaml
@@ -368,8 +368,7 @@ groups:
       scored: true
 
     - id: 2.2.4
-      text: "Ensure that the kubelet service file permissions are set to 644 or
-      more restrictive (Scored)"
+      text: "Ensure that the kubelet.conf file ownership is set to root:root (Scored)"
       audit: "/bin/sh -c 'if test -e $kubeletconf; then stat -c %U:%G $kubeletconf; fi'"
       tests:
         test_items:

From 2073e08363c69b93f84e685666869237b37f9c51 Mon Sep 17 00:00:00 2001
From: Julien Garcia Gonzalez <julien@giantswarm.io>
Date: Mon, 18 Jun 2018 13:44:25 +0200
Subject: [PATCH 2/2] update 2.2.4 rules

---
 cfg/1.8/node.yaml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/cfg/1.8/node.yaml b/cfg/1.8/node.yaml
index bfaf6f9..d279c2e 100644
--- a/cfg/1.8/node.yaml
+++ b/cfg/1.8/node.yaml
@@ -368,7 +368,7 @@ groups:
       scored: true
 
     - id: 2.2.4
-      text: "Ensure that the kubelet.conf file ownership is set to root:root (Scored)"
+      text: "2.2.4 Ensure that the kubelet service file ownership is set to root:root (Scored)"
       audit: "/bin/sh -c 'if test -e $kubeletconf; then stat -c %U:%G $kubeletconf; fi'"
       tests:
         test_items: