arno/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2025-03-06 10:06:07 +00:00
Code Issues Releases Wiki Activity

Minor updates

Browse Source
This commit is contained in:
Konstantinos Tsakalozos 2024-11-22 12:08:38 +02:00
parent 414b8808ba
commit e0556a18af
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
cfg/ck8s-cis-1.24/master.yaml
View File

@ -336,8 +336,8 @@ groups:
- flag: "--token-auth-file" - flag: "--token-auth-file"
set: false set: false
remediation: | remediation: |
Follow the documentation and configure alternate mechanisms for authentication. Then, Follow the Kubernetes documentation and configure alternate mechanisms for
edit the API server configuration file $apiserverconf authentication. Then, edit the API server configuration file $apiserverconf
on the control plane node and remove the --token-auth-file argument. on the control plane node and remove the --token-auth-file argument.
scored: true scored: true
@ -843,7 +843,7 @@ groups:
Edit the Controller Manager configuration file $controllermanagerconf Edit the Controller Manager configuration file $controllermanagerconf
on the control plane node and set the --terminated-pod-gc-threshold to an appropriate threshold. on the control plane node and set the --terminated-pod-gc-threshold to an appropriate threshold.
`--terminated-pod-gc-threshold=10` `--terminated-pod-gc-threshold=12500`
scored: false scored: false
- id: 1.3.2 - id: 1.3.2