STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform runtime must enforce ports, protocols, and services that adhere to the PPSM CAL.

DISA Rule

SV-233073r599561_rule

Vulnerability Number

V-233073

Group Title

SRG-APP-000142

Rule Version

SRG-APP-000142-CTR-000325

Severity

CAT II

CCI(s)

• CCI-000382 - The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.

Weight

10

Fix Recommendation

Configure the container platform to disable any ports or protocols that are prohibited by the PPSM CAL and not necessary for the operation.

Check Contents

Review the container platform documentation and deployment configuration to determine which ports and protocols are enabled.

Verify the ports and protocols being used are not prohibited by PPSM CAL in accordance to DoD Instruction 8551.01 Policy and are necessary for the operations and applications.

If any of the ports or protocols is prohibited or not necessary for the operation, this is a finding.

Vulnerability Number

V-233073

Documentable

False

Rule Version

SRG-APP-000142-CTR-000325

Severity Override Guidance

Review the container platform documentation and deployment configuration to determine which ports and protocols are enabled.

Verify the ports and protocols being used are not prohibited by PPSM CAL in accordance to DoD Instruction 8551.01 Policy and are necessary for the operations and applications.

If any of the ports or protocols is prohibited or not necessary for the operation, this is a finding.

Check Content Reference

M

Target Key

5239

Comments