GuillaumeHemmen/docker-bench-security
1
0
Fork 0
mirror of https://github.com/docker/docker-bench-security.git synced 2025-01-18 16:22:33 +01:00
Code Issues Projects Releases Packages Wiki Activity
858 commits 3 branches 11 tags 4.9 MiB
Commit graph

858 commits

This branch
This branch
All branches
Author SHA1 Message Date
serica
0ae544dd03 fix style and false warning in check_5_3 2021-11-30 18:38:36 -08:00
Thomas Sjögren
ec211a3277
Merge pull request #489 from joaocfernandes/fix_typos 
Fix description typos
 2021-11-12 10:07:56 +01:00
João Fernandes
a409e03d99
Fix typo in check_5_21 2021-11-11 20:39:22 +00:00
João Fernandes
7e89ea067d
Fix typo in check_4_11 
Fix the text description for check_4_11 .
 2021-11-11 20:39:00 +00:00
Thomas Sjögren
ec3ddf2acd
Merge pull request #475 from nikitastupin/feature-list-open-ports 
Implement listing of open ports
 2021-10-31 12:50:27 +01:00
Thomas Sjögren
fd93a6ee93
Merge pull request #476 from nikitastupin/feature-specific-capability-checks 
Add checks for capabilities that allows container escape
 2021-10-31 12:26:40 +01:00
Thomas Sjögren
a40b888ee9
Merge pull request #488 from garettmd/master 
Add /etc/hostname fix for macOS
 2021-10-01 22:04:59 +02:00
Garett Dunn
8ac4513d24
Add /etc/hostname fix for macOS 2021-10-01 11:39:17 -04:00
Thomas Sjögren
1891eaa8b3
Merge pull request #487 from AErmie/patch-1 
Updated log file name
 2021-09-30 15:23:24 +02:00
Adin Ermie
d98a054c2f
Updated log file name 
From testing, the default logfile name is `docker-bench-security.log.json` not `docker-bench-security.sh.log.json`
 2021-09-30 09:02:41 -04:00
Thomas Sjögren
f656a5d683
Merge pull request #485 from AErmie/patch-1 
Added multiple check groups example
 2021-09-29 10:20:25 +02:00
Adin Ermie
e6a742ba38
Added multiple check groups example 
Added an example of running multiple groups of checks, as the documentation did not clearly show this is possible (and the proper syntax).
 2021-09-28 17:51:40 -04:00
Thomas Sjögren
dfb3a90f67
Merge pull request #478 from konstruktoid/ISSUE477 
fix socket check
 2021-07-12 21:55:31 +00:00
Thomas Sjögren
683c5a92b5 fix socket check 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-07-12 15:22:12 +02:00
Nikita Stupin
cf93e9ed07 Add checks for capabilities that allows container escape 2021-07-08 13:10:12 +03:00
Nikita Stupin
dacc7372bf Implement listing of open ports 2021-07-08 13:00:21 +03:00
Thomas Sjögren
2024e16f09
Merge pull request #474 from denhamparry/master 
fix: set docker-bench-security to sh
 2021-07-07 11:05:42 +00:00
Lewis Denham-Parry
e31e7aa0ae
fix: set docker-bench-security to sh 
- Set script to execute with sh rather than bash
- Set CMD Dockerfile to use /bin/sh
 2021-07-07 08:22:59 +01:00
Thomas Sjögren
c6256295fc
Merge pull request #471 from aagot/master 
Update 2_docker_daemon_configuration.sh
 2021-06-26 16:14:39 +00:00
aagot
08a7b09d4d
Update 2_docker_daemon_configuration.sh 2021-06-25 14:38:02 +02:00
Thomas Sjögren
3769a64a2f
Merge pull request #469 from konstruktoid/v131 
Initial v1.3.1 PR
 2021-05-25 18:52:43 +00:00
Thomas Sjögren
c1457e6ad3 initial commit of tests/99_community_checks.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
32c5e5f1fb initial commit of tests/8_docker_enterprise_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
4e379bbaf9 initial commit of tests/7_docker_swarm_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
3a9deae328 initial commit of tests/6_docker_security_operations.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
bd05445528 initial commit of tests/5_container_runtime.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
28fa0393da initial commit of tests/4_container_images.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:46 +02:00
Thomas Sjögren
6f574b07c1 initial commit of tests/3_docker_daemon_configuration_files.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
6a685524eb initial commit of tests/2_docker_daemon_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
4a4ae81a03 initial commit of tests/1_host_configuration.sh v1.3.1 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:49:45 +02:00
Thomas Sjögren
ca4ef8fa57 linting 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:46:07 +02:00
Thomas Sjögren
2466ab4826 update wording 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:45:38 +02:00
Thomas Sjögren
17026093f1 update check functions and remove docker_enterprise_configuration from default 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:45:20 +02:00
Thomas Sjögren
cff5d7f32c wording and set printremediation="0" 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:44:18 +02:00
Thomas Sjögren
addefc6ee4 update documentation 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2021-05-25 20:43:33 +02:00
Thomas Sjögren
6a8fdcf72e
Merge pull request #467 from razvanstoica89/master 
Small improvement of user experience
 2021-04-27 08:46:53 +00:00
Razvan Stoica
0a59baa9fb Change "Impact" to "Remediation Impact" in bash log 2021-04-19 09:51:48 +03:00
Razvan Stoica
e4d9bd1556 Set remediationImpact for 5.31 test to None. 2021-04-14 11:17:22 +03:00
Razvan Stoica
15aa1eecd5 Update remediation impact message for test 5.31 2021-04-14 10:58:53 +03:00
Razvan Stoica
38ac7ef8d8 Fix the printing error when using bash 2021-04-10 12:01:33 +03:00
Razvan Stoica
c67469d96b Fix systemctl error when running inside a container 2021-03-29 16:20:01 +03:00
Razvan Stoica
81ac358e82 Remove temporary files 2021-03-29 15:32:34 +03:00
Razvan Stoica
d0443cc817 Bug fixing and improving source code readability 2021-03-29 15:22:14 +03:00
Razvan Stoica
86985f854f Overwrite the json log at each run. Beautify the json log. 2021-03-28 11:08:15 +03:00
Razvan Stoica
8a934aebf1 Remove the Debian family-specific installation command 2021-03-28 09:47:49 +03:00
Razvan Stoica
4b68c2e040 Rename logs without the .sh extension 2021-03-27 09:36:10 +02:00
Razvan Stoica
f31e60c379 Add more remediation stuff 2021-03-22 09:43:56 +02:00
Razvan Stoica
c8721c90fa Displays the correct current time 2021-03-19 13:51:31 +02:00
Razvan Stoica
68cb493117 Log the remediation measure in JSON file only if the -p flag is not set 2021-03-19 09:29:55 +02:00
Razvan Stoica
cc8171fbfe Add remediation stuff on enterprise configuration 2021-03-18 10:32:02 +02:00