GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-02-23 08:26:41 +01:00
Code Issues Projects Releases Packages Wiki Activity

444 is read-only

Browse source 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
This commit is contained in:
Thomas Sjögren 2015-06-17 23:52:23 +02:00
parent 70b8d33cef
commit 3059cef2c3
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
tests/3_docker_daemon_configuration_files.sh
View file

@ -276,7 +276,7 @@ if [ -d "$directory" ]; then
fail=0
perms=$(ls -lL "$directory"/*.crt | awk '{print $1}')
for p in $perms; do
if [ "$p" != "-rw-r--r--." -a "$p" = "-rw-------." ]; then
if [ "$p" != "-r--r--r--." -a "$p" = "-r--------." ]; then
fail=1
fi
done
@ -311,7 +311,7 @@ check_3_20="3.20 - Verify that TLS CA certificate file permissions are set to 44
tlscacert=$(pgrep -lf docker | sed -n 's/.*tlscacert=\([^s]\)/\1/p' | cut -d " " -f 1)
if [ -f "$tlscacert" ]; then
perms=$(ls -ld "$tlscacert" | awk '{print $1}')
if [ "$perms" = "-rw-r--r--" ]; then
if [ "$perms" = "-r--r--r--" ]; then
pass "$check_3_20"
else
warn "$check_3_20"
@ -342,7 +342,7 @@ check_3_22="3.22 - Verify that Docker server certificate file permissions are se
tlscacert=$(pgrep -lf docker | sed -n 's/.*tlscert=\([^s]\)/\1/p' | cut -d " " -f 1)
if [ -f "$tlscert" ]; then
perms=$(ls -ld "$tlscert" | awk '{print $1}')
if [ "$perms" = "-rw-r--r--" ]; then
if [ "$perms" = "-r--r--r--" ]; then
pass "$check_3_22"
else
warn "$check_3_22"