Workload misconfigurations

Ensure that the Docker server certificate key file ownership is set to root:root (Automated)

Risk Level

Informational (4)

Platform(s)

  • N/A

Compliance Frameworks

Description

You should verify that the Docker server certificate key file (the file that is passed along with the --tlskey parameter) is individually owned and group owned by root.

  • Recommended Mitigation

    You should execute the following command: 'chown root:root '. This sets the individual ownership and group ownership for the Docker server certificate key file to root.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.