Docker Enterprise /etc/docker directory ownership must be set to root:root.
An XCCDF Rule
Description
<VulnDiscussion>Verify that the /etc/docker directory ownership and group-ownership is correctly set to root. /etc/docker directory contains certificates and keys in addition to various sensitive files. Hence, it should be owned and group-owned by root to maintain the integrity of the directory. By default, the ownership and group-ownership for this directory is correctly set to root.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-235855r627692_rule
- Severity
- High
- References
- Updated
Remediation - Manual Procedure
Set the ownership and group-ownership for the directory to root.
On CentOS host OS's, execute the following command:
chown root:root /etc/docker
On Ubuntu host OS's, execute the following command: