Rancher CIS Kubernetes v.1.4.0 Benchmark Self
Assessment(Scored) Audit docker inspect kube-apiserver | jq -e '.[0].Args[] | match("--anonymous-auth=false").string' Returned Value: --anonymous-auth=false Result: Pass 1.1.2 - Ensure that the --basic-auth-file (Scored) Audit docker inspect kube-apiserver | jq -e '.[0].Args[] | match("--basic-auth-file=.*").string' Returned Value: null Result: Pass 1.1.3 - Ensure that the --insecure-allow-any-token argument Audit docker inspect kube-apiserver | jq -e '.[0].Args[] | match("--insecure-allow-any-token").string' Returned Value: null Result: Pass 1.1.4 - Ensure that the --kubelet-https argument is set0 码力 | 47 页 | 302.56 KB | 1 年前3- Rancher Hardening Guide Rancher v2.1.xsecret: <32-byte base64 encoded string> - identity: {} Where aescbc is the key type, and secret is populated with a 32-byte base64 encoded string. Remediation Generate a key and an empty - name: key1 secret: <32-byte base64 encoded string> - identity: {} Where secret is the 32-byte base64-encoded string generated in the first step. 1.1.3 - Install the audit log configuration0 码力 | 24 页 | 336.27 KB | 1 年前3
- CIS Benchmark Rancher Self-Assessment Guide - v2.4to the path to the cert file for the certificate authority. --kubelet-certificate-authority=0 码力 | 54 页 | 447.77 KB | 1 年前3
- CIS 1.5 Benchmark - Self-Assessment Guide - Rancher v2.5to the path to the cert file for the certificate authority. --kubelet-certificate-authority=0 码力 | 54 页 | 447.97 KB | 1 年前3
- Cloud Native Contrail Networking
Installation and Life Cycle ManagementGuide for Rancher RKE2
~/snap/docker directory hierarchy.) 3. Encode your credentials in base64 and store the resulting string. ENCODED_CREDS=$(base64 -w 0 config.json) Take a look at the encoded credentials. echo $ENCODED_CREDS0 码力 | 72 页 | 1.01 MB | 1 年前3
共 5 条
- 1