kube-bench icon indicating copy to clipboard operation
kube-bench copied to clipboard

Published 20 hours ago verified publisher icon aquasecurity

mount /etc/passwd and /etc/group for etcd ownership related checks

Open i-karina opened this issue 3 years ago • 2 comments
trafficstars

Changes to job-master.yaml are also needed in job.yaml to properly check ownership of etcd data dir

Issue: https://github.com/aquasecurity/kube-bench/issues/1275

Related to issue: https://github.com/aquasecurity/kube-bench/issues/842 fix the same as in https://github.com/aquasecurity/kube-bench/pull/868

i-karina avatar Sep 13 '22 09:09 i-karina

CLA assistant check
All committers have signed the CLA.

CLAassistant avatar Sep 13 '22 09:09 CLAassistant

In most cases the job that was created via job.yaml will not be running on the master node. IMHO, mount /etc/passwd and /etc/group from worker node is not necessary.

mozillazg avatar Sep 14 '22 14:09 mozillazg