arno/kube-bench
1
0
Fork 0
mirror of https://github.com/aquasecurity/kube-bench.git synced 2024-11-23 00:28:07 +00:00
Code Issues Releases Wiki Activity
72f5a54777
kube-bench/cfg/rke2-cis-1.24
History
Saurabh Misra 72f5a54777 FIXING RKE2-CIS-1.24 CHECKS 
. MASTER:
            a. Checks 1.1.10,1.1.20 are manual according to https://docs.rke2.io/security/cis_self_assessment124#1110-ensure-that-the-container-network-interface-file-ownership-is-set-to-root-manual and https://docs.rke2.io/security/cis_self_assessment124#1110-ensure-that-the-container-network-interface-file-ownership-is-set-to-root-manual respectively.
            b. Check 1.3.6 is not relevant to an RKE2 cluster as RKE2 rotates TLS certificates internally - https://github.com/rancher/dashboard/issues/4485. We will skip it and not score it

    2. NODE:
            a. Check 4.2.12 is the node-level equivalent of the master-level check 1.3.6 and is treated the same way.
2024-09-19 18:08:05 +05:30
..
config.yaml Add CIS Benchmarks support to Rancher Distributions RKE/RKE2/K3s (#1523) 2023-11-26 12:27:38 +02:00
controlplane.yaml Add CIS Benchmarks support to Rancher Distributions RKE/RKE2/K3s (#1523) 2023-11-26 12:27:38 +02:00
etcd.yaml Add CIS Benchmarks support to Rancher Distributions RKE/RKE2/K3s (#1523) 2023-11-26 12:27:38 +02:00
master.yaml FIXING RKE2-CIS-1.24 CHECKS 2024-09-19 18:08:05 +05:30
node.yaml FIXING RKE2-CIS-1.24 CHECKS 2024-09-19 18:08:05 +05:30
policies.yaml Add CIS Benchmarks support to Rancher Distributions RKE/RKE2/K3s (#1523) 2023-11-26 12:27:38 +02:00