docker-bench
- This repo is my guide to docker-bench for security.
- The link to docker-bench repo is git clone https://github.com/docker/docker-bench-security.git
- According to that repo, docker-bench can be used :
docker run -it --net host --pid host --userns host --cap-add audit_control
-e DOCKER_CONTENT_TRUST=$DOCKER_CONTENT_TRUST
-v /etc:/etc:ro
-v /usr/bin/docker-containerd:/usr/bin/docker-containerd:ro
-v /usr/bin/docker-runc:/usr/bin/docker-runc:ro
-v /usr/lib/systemd:/usr/lib/systemd:ro
-v /var/lib:/var/lib:ro
-v /var/run/docker.sock:/var/run/docker.sock:ro
--label docker_bench_security
docker/docker-bench-security