III - Administrative Public
Rules and Groups employed by this XCCDF Profile
-
Secrets in Kubernetes must not be stored as environment variables.
Secrets, such as passwords, keys, tokens, and certificates should not be stored as environment variables. These environment variables are accessible inside Kubernetes by the "Get Pod" API call, and...Rule High Severity -
SRG-APP-000211-CTR-000530
Group -
Kubernetes must separate user functionality.
Separating user functionality from management functionality is a requirement for all the components within the Kubernetes Control Plane. Without the separation, users may have access to management ...Rule Medium Severity -
SRG-APP-000219-CTR-000550
Group -
The Kubernetes API server must use approved cipher suites.
The Kubernetes API server communicates to the kubelet service on the nodes to deploy, update, and delete resources. If an attacker were able to get between this communication and modify the request...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules