haxorof/ansible-role-docker-ce

Add missing audit rules which are defined in CIS Docker Benchmark 1.2.0

haxorof opened this issue · 0 comments

haxorof commented

There are two audit rules missing compared to CIS Docker Benchmark 1.2.0. These are:

-w /usr/bin/containerd -k docker
-w /usr/bin/dockerd -k docker

Reason is that when implemented CIS Docker Benchmark 1.1.0 was only available.