Skip to content
Log In

Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000247

    Group
    Show

  • PIDs cgroup limits must be used in Docker Enterprise.

    Use --pids-limit flag at container runtime. Attackers could launch a fork bomb with a single command inside the container. This fork bomb can crash the entire system and requires a restart of the ...
    Rule Medium Severity
    Show

  • SRG-APP-000295

    Group
    Show

  • The Docker Enterprise per user limit login session control must be set per the requirements in the System Security Plan (SSP).

    The Universal Control Plane (UCP) component of Docker Enterprise includes a built-in access authorization mechanism called eNZi which can be integrated with an LDAP server and allows for automatic ...
    Rule Low Severity
    Show

  • SRG-APP-000342

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules