Ensure that daemon.json file permissions are set to 644 or more restrictive (Automated)
You should verify that if the daemon.json is present its file permissions are correctly set to 644 or more restrictively.
Blog
Ensure that the /etc/sysconfig/docker file ownership is set to root:root (Automated)
You should verify that the /etc/sysconfig/docker file individual ownership and group ownership is correctly set to root.
Ensure network traffic is restricted between containers on the default bridge (Automated)
By default, all network traffic is allowed between containers on the same host on the default network bridge.
Ensure TLS authentication for Docker daemon is configured (Automated)
It is possible to make the Docker daemon available remotely over a TCP port. If this is required, you should...
Ensure the default ulimit is configured appropriately (Automated)
ulimit provides control over the resources available to the shell and to processes which it starts. Setting system resource limits...
Ensure that authorization for Docker client commands is enabled (Automated)
Under certain circumstances, you might need containers larger than 10G. Where this applies you should carefully choose the base device...
Ensure centralized and remote logging is configured (Automated)
Docker supports various logging mechanisms. A preferable method for storing logs is one that supports centralized and remote management.
Ensure Userland Proxy is Disabled (Automated)
The Docker daemon starts a userland proxy service for port forwarding whenever a port is exposed. Where hairpin NAT is...
Ensure that a daemon-wide custom seccomp profile is applied if appropriate (Automated)
You can choose to apply a custom seccomp profile at a daemon-wide level if needed with this overriding Docker's default...