Workload misconfigurations

Kubernetes node’s kubelet protect-kernel-defaults is set false

Platform(s)

  • Non-platform specific

Compliance Frameworks
  • AKS CIS
    • ,
  • CCPA
    • ,
  • CPRA
    • ,
  • EKS CIS
    • ,
  • GKE CIS
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • K8s CIS
    • ,
  • K8s OWASP Top 10
    • ,
  • NIST 800-171
    • ,
  • NIST 800-190
    • ,
  • NIST 800-53
    • ,
  • PDPA
    • ,
  • STIG K8s
    • ,
  • UK Cyber Essentials

Description

The kubelet reads various parameters, including security settings, from a config file. Kernel parameters are usually tuned and hardened by the system administrators before putting the systems into production. These parameters protect the kernel and the system. Your kubelet kernel defaults that rely on such parameters should be appropriately set to match the desired secured system state. Ignoring this could potentially lead to running pods with undesired kernel behavior. Orca has detected that the protectKernelDefaults flag is set to false on {K8sNode.Vm}.
Need help?

Get a free Security Risk Assessment. Start today

Demo the Orca Platform

In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Get a Demo