I - Mission Critical Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Docker Enterprise node certificates must be rotated as defined in the System Security Plan (SSP).
<VulnDiscussion>Rotate swarm node certificates as appropriate. Docker Swarm uses mutual TLS for clustering operations amongst its nodes. Cer...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Docker Enterprise docker.service file ownership must be set to root:root.
<VulnDiscussion>Verify that the docker.service file ownership and group-ownership are correctly set to root. docker.service file contains se...Rule High Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Docker Enterprise docker.service file permissions must be set to 644 or more restrictive.
<VulnDiscussion>Verify that the docker.service file permissions are correctly set to 644 or more restrictive. docker.service file contains s...Rule Medium Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Docker Enterprise docker.socket file ownership must be set to root:root.
<VulnDiscussion>Verify that the docker.socket file ownership and group ownership is correctly set to root. docker.socket file contains sensi...Rule High Severity -
SRG-APP-000516
<GroupDescription></GroupDescription>Group -
Docker Enterprise docker.socket file permissions must be set to 644 or more restrictive.
<VulnDiscussion>Verify that the docker.socket file permissions are correctly set to 644 or more restrictive. docker.socket file contains sen...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.