Workload misconfigurations

Ensure auditing is configured for Docker files and directories – /usr/bin/containerd-shim (Automated)

Risk Level

Informational (4)

Platform(s)
  • N/A

Compliance Frameworks

Description

Audit /usr/bin/containerd-shim if applicable.
  • Recommended Mitigation

    You should add a rule for the /usr/bin/containerd-shim file. Add the line to the /etc/audit/audit.rules file: -w /usr/bin/containerd-shim -k docker. Then restart the audit daemon: systemctl restart auditd