STIGQter: STIG Summary: Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021: STIGQter: STIG Summary: Docker Enterprise 2.x Linux/UNIX Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:SV-235786r627485_rule
V-235786
SRG-APP-000090
DKER-EE-001370
CAT II
10
Execute this fix on all Docker Engine - Enterprise nodes in the cluster.
via CLI:
Linux: Execute the following commands as a trusted user on the host operating system:
Open "/etc/docker/daemon.json" for editing.
Set the "log-opts" object and its "max-size" and "max-file" properties accordingly.
Save the file. Restart the Docker daemon.
Verify this check on all Docker Engine - Enterprise nodes in the cluster.
via CLI:
Linux: Execute the following commands as a trusted user on the host operating system:
Note: daemon.json file does not exist by default and must be created. Refer to https://docs.docker.com/engine/reference/commandline/dockerd/#daemon-configuration-file for all options.
cat /etc/docker/daemon.json
Verify that the "log-opts" object includes the "max-size" and "max-file" properties and that they are set accordingly in the output.
If the "log-opts" object does not include the "max-size" and "max-file" properties and/or are not set accordingly, then this is a finding.
V-235786
False
DKER-EE-001370
Verify this check on all Docker Engine - Enterprise nodes in the cluster.
via CLI:
Linux: Execute the following commands as a trusted user on the host operating system:
Note: daemon.json file does not exist by default and must be created. Refer to https://docs.docker.com/engine/reference/commandline/dockerd/#daemon-configuration-file for all options.
cat /etc/docker/daemon.json
Verify that the "log-opts" object includes the "max-size" and "max-file" properties and that they are set accordingly in the output.
If the "log-opts" object does not include the "max-size" and "max-file" properties and/or are not set accordingly, then this is a finding.
M
5281