Workload misconfigurations

Ensure that docker.socket file ownership is set to root:root (Automated)

Risk Level

Informational (4)

Platform(s)

  • N/A

Compliance Frameworks

Description

You should verify that the docker.socket file ownership and group ownership are correctly set to root.

  • Recommended Mitigation

    Step 1: Find out the file location: systemctl show -p FragmentPath docker.socket'. Step 2: If the file does not exist, this recommendation is not applicable. If the file exists, execute the command below, including the correct file path to set the ownership and group ownership for the file to root. For example: 'chown root:root /usr/lib/systemd/system/docker.socket'.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.