GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #40 from liron-l/master

Browse source 
Fix CIS 5.8 - Reverse container port and reduce privileged port to 1024
This commit is contained in:
Thomas Sjögren 2015-06-21 21:45:01 +02:00
commit edf0646330
1 changed files with 3 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
tests/5_container_runtime.sh
View file

@ -201,11 +201,12 @@ else
fail=0
for c in $containers; do
ports=$(docker port "$c" | awk '{print $1}' | cut -d '/' -f1)
# Port format is private port -> ip: public port
ports=$(docker port "$c" | awk '{print $0}' | cut -d ':' -f2)
# iterate through port range (line delimited)
for port in $ports; do
if [ ! -z "$port" ] && [ "0$port" -lt 1025 ]; then
if [ ! -z "$port" ] && [ "0$port" -lt 1024 ]; then
# If it's the first container, fail the test
if [ $fail -eq 0 ]; then
warn "$check_5_8"