GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity

apply TLS checks to any socket other than unix:// or fd://

Browse source 
break the docker command line arguments into one option per line,
then find all socket items (H or host), exclude the unix:// and
fd:// sockets, and if there are any left, check for TLS options

Signed-off-by: Mr. Secure <ben.github@mrsecure.org>
This commit is contained in:
Mr. Secure 2015-11-13 19:51:46 -06:00
parent 81730f536a
commit f791d06cff
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
tests/2_docker_daemon_configuration.sh
View file

@ -79,7 +79,7 @@ fi
# 2.9
check_2_9="2.9 - Configure TLS authentication for Docker daemon"
get_command_line_args docker | grep "\-H\wtcp://" >/dev/null 2>&1
get_command_line_args docker | tr "-" "\n" | grep -E '^(H|host)' | grep -vE '(unix|fd)://' >/dev/null 2>&1
if [ $? -eq 0 ]; then
get_command_line_args docker | grep "tlsverify" | grep "tlskey" >/dev/null 2>&1
if [ $? -eq 0 ]; then