STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

All non-essential, unnecessary, and unsecure DoD ports, protocols, and services must be disabled in the container platform.

DISA Rule

SV-233190r599509_rule

Vulnerability Number

V-233190

Group Title

SRG-APP-000383

Rule Version

SRG-APP-000383-CTR-000910

Severity

CAT II

CCI(s)

• CCI-001762 - The organization disables organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure.

Weight

10

Fix Recommendation

Configure the container platform to only utilize secure ports and protocols required for operation that have been accepted for use as per the Ports, Protocols, and Services Category Assignments List (CAL) from DISA (PPSM).

Check Contents

Review the container platform configuration to determine if services or capabilities presently on the information system are required for operational or mission needs.

If additional services or capabilities are present on the system, this is a finding.

Vulnerability Number

V-233190

Documentable

False

Rule Version

SRG-APP-000383-CTR-000910

Severity Override Guidance

Review the container platform configuration to determine if services or capabilities presently on the information system are required for operational or mission needs.

If additional services or capabilities are present on the system, this is a finding.

Check Content Reference

M

Target Key

5239

Comments