I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516-CTR-001325
Group -
The Kubernetes kubelet KubeConfig file must be owned by root.
The Kubernetes kubelet agent registers nodes with the API server and performs health checks to containers within pods. If these files can be modified, the information system would be unaware of pod...Rule Medium Severity -
SRG-APP-000516-CTR-001325
Group -
The Kubernetes kubeadm.conf must be owned by root.
The Kubernetes kubeeadm.conf contains sensitive information regarding the cluster nodes configuration. If this file can be modified, the Kubernetes Platform Plane would be degraded or compromised f...Rule Medium Severity -
SRG-APP-000516-CTR-001325
Group -
The Kubernetes kubeadm.conf must have file permissions set to 644 or more restrictive.
The Kubernetes kubeadm.conf contains sensitive information regarding the cluster nodes configuration. If this file can be modified, the Kubernetes Platform Plane would be degraded or compromised fo...Rule Medium Severity -
SRG-APP-000516-CTR-001330
Group -
The Kubernetes kubelet config must have file permissions set to 644 or more restrictive.
The Kubernetes kubelet agent registers nodes with the API server and performs health checks to containers within pods. If this file can be modified, the information system would be unaware of pod o...Rule Medium Severity -
SRG-APP-000516-CTR-001330
Group -
The Kubernetes kubelet config must be owned by root.
The Kubernetes kubelet agent registers nodes with the API Server and performs health checks to containers within pods. If this file can be modified, the information system would be unaware of pod o...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.