Ensure auditing is configured for Docker files and directories – /usr/bin/containerd-shim-runc-v2 (Automated)
Audit /usr/bin/containerd-shim-runc-v2 if applicable.
Blog
Ensure that, if applicable, SELinux security options are set (Automated)
SELinux is an effective and easy-to-use Linux application security system. It is available by default on some distributions such as...
Ensure that, if applicable, an AppArmor Profile is enabled (Automated)
AppArmor is an effective and easy-to-use Linux application security system. It is available on some Linux distributions by default, for...
Ensure that the Containerd socket file permissions are set to 660 or more restrictively (Automated)
You should verify that the Containerd socket file has permissions of 660 or are configured more restrictively.
Ensure sshd is not run within containers (Automated)
The SSH daemon should not be running within the container. You should SSH into the Docker host, and use docker...
Apache Spark configuration without authentication
We have detected an Apache Spark configuration file on the system which doesn't support authentication. This could allow unwanted users...
Ensure TLS is enabled and configured correctly (Automated)
If TLS is not enabled and configured correctly, this increases the risk of data being compromised in transit.
RDS database instance has automated backups disabled
Automated backups are disabled for the RDS instance {AwsRdsDbInstance}. Backups help protect against human error, ransomware attacks, and downtime. If...
Ensure the logging level is set to ‘info’ (Automated)
Setting up an appropriate log level, configures the Docker daemon to log events that you would want to review later....