K8S API server configuration contains insecure port - Complete Cloud Security in Minutes - Orca Security

Data protection

K8S API server configuration contains insecure port

Risk Level

Hazardous (3)

Platform(s)

N/A

Compliance Frameworks

K8s CIS

Description

It was found that the API server contains an insecure port. Setting an insecure port allows anyone to connect without an authentication and authorization to the api server.

Recommended Mitigation

It is recommended to verify that '--insecure-port' is set to zero in the configuration file.

See Orca in action

See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.