Workload misconfigurations

Ensure auditing is configured for Docker files and directories – /usr/bin/containerd-shim-runc-v1 (Automated)

Risk Level

Informational (4)

Platform(s)

  • N/A

Compliance Frameworks

Description

Audit /usr/bin/containerd-shim-runc-v1 if applicable.

  • Recommended Mitigation

    You should add a rule for the /usr/bin/containerd-shim-runc-v1 file. Add the line below to the /etc/audit/audit.rules file: -w /usr/bin/containerd-shim-runc-v1 -k docker. Then restart the audit daemon: systemctl restart auditd

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.