Kubernetes node's Kube-Proxy configuration file owner is not root

Workload misconfigurations

Kubernetes node’s Kube-Proxy configuration file owner is not root

Platform(s)

Compliance Frameworks

CCPA
CPRA
GKE CIS
iso_27001_2022
iso_27002_2022
K8s OWASP Top 10
NIST 800-171
NIST 800-190
NIST 800-53
PDPA
UK Cyber Essentials

Description

The kube-proxy kubeconfig file controls various parameters of the kube-proxy service in the worker node. Orca has detected that the kube-proxy's kubeconfig file owner on {K8sNode.Vm} is set to {Vm.K8sKubeProxyConfigs.ConfigFile.Group}:{Vm.K8sKubeProxyConfigs.ConfigFile.UserName}. The file should be owned by root:root.

Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Kubernetes node’s Kube-Proxy configuration file owner is not root

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS