GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-19 08:42:33 +01:00
Code Issues Projects Releases Packages Wiki Activity

auditctl requires cap_audit_control

Browse source 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
This commit is contained in:
Thomas Sjögren 2015-06-11 23:42:30 +02:00
parent 67711b52d3
commit 9a87d5e3a7
1 changed files with 6 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

10
README.md
View file

@ -14,8 +14,9 @@ The easiest way to run your hosts against the CIS Docker 1.6 benchmark is by run
``` ```
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock \ docker run -it --cap-add audit_control --net host --pid host \
-v /usr/lib/systemd:/usr/lib/systemd -v /etc:/etc --label docker-bench-security \ -v /var/run/docker.sock:/var/run/docker.sock -v /usr/lib/systemd:/usr/lib/systemd \
-v /etc:/etc --label docker-bench-security \
diogomonica/docker-bench-security diogomonica/docker-bench-security
``` ```
@ -30,8 +31,9 @@ If you wish to build and run this container yourself, you can follow the followi
``` ```
git clone https://github.com/diogomonica/docker-bench-security.git git clone https://github.com/diogomonica/docker-bench-security.git
cd docker-bench-security; docker build -t docker-bench-security . cd docker-bench-security; docker build -t docker-bench-security .
docker run -it --net host --pid host -v /var/run/docker.sock:/var/run/docker.sock \ docker run -it --cap-add audit_control --net host --pid host \
-v /usr/lib/systemd:/usr/lib/systemd -v /etc:/etc --label security-benchmark \ -v /var/run/docker.sock:/var/run/docker.sock -v /usr/lib/systemd:/usr/lib/systemd \
-v /etc:/etc --label security-benchmark \
docker-bench-security docker-bench-security
``` ```