Merge pull request #35 from konstruktoid/cap_audit

add cap_audit_control for auditctl to work

README.md

@@ -14,11 +14,12 @@ The easiest way to run your hosts against the CIS Docker 1.6 benchmark is by run
 
 
 ```sh
-docker run -it --net host --pid host -v /var/lib:/var/lib \
+docker run -it --net host --pid host --cap-add audit_control \
+    -v /var/lib:/var/lib \
     -v /var/run/docker.sock:/var/run/docker.sock \
     -v /usr/lib/systemd:/usr/lib/systemd \
     -v /etc:/etc --label docker-bench-security \
-    diogomonica/docker-bench-security
+    docker-bench-security
 ```
 
 Docker bench requires Docker 1.6.2 or later in order to run, since it depends on the `--label` to exclude the current container from being inspected. If you can't upgrade to 1.6.2, I feel free to remove the `--label` flag or run the shell script locally (see below).
@@ -30,10 +31,11 @@ Additionally, there was a bug in Docker 1.6.0 that would not allow mounting `-v
 If you wish to build and run this container yourself, you can follow the following steps:
 
 ```sh
-git clone https://github.com/diogomonica/docker-bench-security.git
+git clone https://github.com/docker/docker-bench-security.git
 cd docker-bench-security
 docker build -t docker-bench-security .
-docker run -it --net host --pid host -v /var/lib:/var/lib \
+docker run -it --net host --pid host --cap-add audit_control \
+    -v /var/lib:/var/lib \
     -v /var/run/docker.sock:/var/run/docker.sock \
     -v /usr/lib/systemd:/usr/lib/systemd \
     -v /etc:/etc --label security-benchmark \