GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2024-11-01 00:21:45 +01:00
Code Issues Projects Releases Packages Wiki Activity
898 commits 3 branches 11 tags 4.9 MiB
Commit graph

898 commits

This branch
This branch
All branches
Author SHA1 Message Date
Thomas Sjögren
f656a5d683
Merge pull request #485 from AErmie/patch-1 
Added multiple check groups example
 2021-09-29 10:20:25 +02:00
Adin Ermie
e6a742ba38
Added multiple check groups example 
Added an example of running multiple groups of checks, as the documentation did not clearly show this is possible (and the proper syntax).
 2021-09-28 17:51:40 -04:00
Thomas Sjögren
dfb3a90f67
Merge pull request #478 from konstruktoid/ISSUE477 
fix socket check
 2021-07-12 21:55:31 +00:00
Thomas Sjögren
683c5a92b5 fix socket check 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-07-12 15:22:12 +02:00
Nikita Stupin
cf93e9ed07 Add checks for capabilities that allows container escape 2021-07-08 13:10:12 +03:00
Nikita Stupin
dacc7372bf Implement listing of open ports 2021-07-08 13:00:21 +03:00
Thomas Sjögren
2024e16f09
Merge pull request #474 from denhamparry/master 
fix: set docker-bench-security to sh
 2021-07-07 11:05:42 +00:00
Lewis Denham-Parry
e31e7aa0ae
fix: set docker-bench-security to sh 
- Set script to execute with sh rather than bash
- Set CMD Dockerfile to use /bin/sh
 2021-07-07 08:22:59 +01:00
Thomas Sjögren
c6256295fc
Merge pull request #471 from aagot/master 
Update 2_docker_daemon_configuration.sh
 2021-06-26 16:14:39 +00:00
aagot
08a7b09d4d
Update 2_docker_daemon_configuration.sh 2021-06-25 14:38:02 +02:00
Thomas Sjögren
3769a64a2f
Merge pull request #469 from konstruktoid/v131 
Initial v1.3.1 PR
 2021-05-25 18:52:43 +00:00
Thomas Sjögren
c1457e6ad3 initial commit of tests/99_community_checks.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
32c5e5f1fb initial commit of tests/8_docker_enterprise_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
4e379bbaf9 initial commit of tests/7_docker_swarm_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
3a9deae328 initial commit of tests/6_docker_security_operations.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
bd05445528 initial commit of tests/5_container_runtime.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
28fa0393da initial commit of tests/4_container_images.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
6f574b07c1 initial commit of tests/3_docker_daemon_configuration_files.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
6a685524eb initial commit of tests/2_docker_daemon_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
4a4ae81a03 initial commit of tests/1_host_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
ca4ef8fa57 linting 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:46:07 +02:00
Thomas Sjögren
2466ab4826 update wording 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:45:38 +02:00
Thomas Sjögren
17026093f1 update check functions and remove docker_enterprise_configuration from default 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:45:20 +02:00
Thomas Sjögren
cff5d7f32c wording and set printremediation="0" 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:44:18 +02:00
Thomas Sjögren
addefc6ee4 update documentation 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:43:33 +02:00
Thomas Sjögren
6a8fdcf72e
Merge pull request #467 from razvanstoica89/master 
Small improvement of user experience
 2021-04-27 08:46:53 +00:00
Razvan Stoica
0a59baa9fb Change "Impact" to "Remediation Impact" in bash log 2021-04-19 09:51:48 +03:00
Razvan Stoica
e4d9bd1556 Set remediationImpact for 5.31 test to None. 2021-04-14 11:17:22 +03:00
Razvan Stoica
15aa1eecd5 Update remediation impact message for test 5.31 2021-04-14 10:58:53 +03:00
Razvan Stoica
38ac7ef8d8 Fix the printing error when using bash 2021-04-10 12:01:33 +03:00
Razvan Stoica
c67469d96b Fix systemctl error when running inside a container 2021-03-29 16:20:01 +03:00
Razvan Stoica
81ac358e82 Remove temporary files 2021-03-29 15:32:34 +03:00
Razvan Stoica
d0443cc817 Bug fixing and improving source code readability 2021-03-29 15:22:14 +03:00
Razvan Stoica
86985f854f Overwrite the json log at each run. Beautify the json log. 2021-03-28 11:08:15 +03:00
Razvan Stoica
8a934aebf1 Remove the Debian family-specific installation command 2021-03-28 09:47:49 +03:00
Razvan Stoica
4b68c2e040 Rename logs without the .sh extension 2021-03-27 09:36:10 +02:00
Razvan Stoica
f31e60c379 Add more remediation stuff 2021-03-22 09:43:56 +02:00
Razvan Stoica
c8721c90fa Displays the correct current time 2021-03-19 13:51:31 +02:00
Razvan Stoica
68cb493117 Log the remediation measure in JSON file only if the -p flag is not set 2021-03-19 09:29:55 +02:00
Razvan Stoica
cc8171fbfe Add remediation stuff on enterprise configuration 2021-03-18 10:32:02 +02:00
Razvan Stoica
3a7fe3bb24 Add remediation stuff on swarm configuration 2021-03-18 10:31:22 +02:00
Razvan Stoica
25de0bd826 Add remediation stuff on security operations 2021-03-18 10:30:30 +02:00
Razvan Stoica
c05c58674a Add remediation stuff on daemon configuration 2021-03-18 10:29:28 +02:00
Razvan Stoica
7e89fdd364 Add remediation stuff on host configuration 2021-03-18 10:28:45 +02:00
Razvan Stoica
68bcd14fb3 Increase version 2021-03-17 14:05:48 +02:00
Razvan Stoica
e5efe2bf40 Add explanations for newly added features 2021-03-16 10:13:31 +02:00
Razvan Stoica
091b4b954a Add option to specify trusted users. Add option to disable the printing of remediation measures. 2021-03-16 10:11:29 +02:00
Razvan Stoica
9722e5d89a Move the help scripts to a dedicated folder 2021-03-16 10:07:48 +02:00
Razvan Stoica
7144b947de Tests update 2021-03-16 10:05:49 +02:00
Razvan Stoica
ca03a37db6 Remove duplicate Dockerfile 2021-03-16 10:00:45 +02:00