STIGQter STIGQter: STIG Summary: Container Platform Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The container platform must prevent component execution in accordance with organization-defined policies regarding software program usage and restrictions, and/or rules authorizing the terms and conditions of software program usage.

DISA Rule

SV-233191r599639_rule

Vulnerability Number

V-233191

Group Title

SRG-APP-000384

Rule Version

SRG-APP-000384-CTR-000915

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the container platform so that any platform components that are not required in order to meet the organization's mission are disabled or removed. Document the components that must be disabled or removed for reference.

Check Contents

Review documentation and configuration setting to determine if policies, rules, or restrictions exist regarding usage of container platform components.

If no such no restrictions are in place, this is not a finding.

Identify any components the organization requires to be disabled or removed and configure the container platform according to that policy.

If the container platform components are not disabled or removed according to the organization's policy, this is a finding.

Vulnerability Number

V-233191

Documentable

False

Rule Version

SRG-APP-000384-CTR-000915

Severity Override Guidance

Review documentation and configuration setting to determine if policies, rules, or restrictions exist regarding usage of container platform components.

If no such no restrictions are in place, this is not a finding.

Identify any components the organization requires to be disabled or removed and configure the container platform according to that policy.

If the container platform components are not disabled or removed according to the organization's policy, this is a finding.

Check Content Reference

M

Target Key

5239

Comments