Ensure that registry certificate file permissions are set to 444 or more restrictively (Automated) - Complete Cloud Security in Minutes - Orca Security

Workload misconfigurations

Ensure that registry certificate file permissions are set to 444 or more restrictively (Automated)

Risk Level

Informational (4)

Platform(s)

N/A

Compliance Frameworks

Docker CIS V1.3.1

Description

You should verify that all the registry certificate files (usually found under /etc/docker/certs.d/ directory) have permissions of 444 or are set more restrictively.

Recommended Mitigation

You should execute the following command: find /etc/docker/certs.d/ -type f -exec chmod 0444 . This would set the permissions for the registry certificate files to 444.

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.