1
0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2024-12-22 14:48:07 +00:00

Merge pull request #173 from aquasecurity/fix-1.1.37

Fix check 1.1.37.
This commit is contained in:
Liz Rice 2018-11-08 11:40:06 +00:00 committed by GitHub
commit e1f5bb1ace
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

View File

@ -607,15 +607,15 @@ groups:
text: "Ensure that the AdvancedAuditing argument is not set to false (Scored)"
audit: "ps -ef | grep $apiserverbin | grep -v grep"
tests:
bin_op: and
bin_op: or
test_items:
- flag: "--feature-gates"
compare:
op: nothave
value: "AdvancedAuditing=false"
set: true
- flag: "--audit-policy-file"
set: true
- flag: "--feature-gates"
set: false
remediation: |
Follow the Kubernetes documentation and set the desired audit policy in the
/etc/kubernetes/audit-policy.yaml file. Then, edit the API server pod specification file $apiserverconf