Uploaded image for project: 'Cloud Infrastructure Security & Compliance'
  1. Cloud Infrastructure Security & Compliance
  2. CMP-972

[AU-9]: Check file and directory permissions for apiserver audit logs

XMLWordPrintable

    • 1
    • False
    • False
    • OCPPLAN-6104 - FedRAMP moderate controls
    • Undefined
    • CMP Sprint 31

      AU-9 says:

      The information system protects audit information and audit tools from unauthorized access, modification, and deletion.

      We should make sure that the directories that store the apiserver audit logs (/var/log/kube-apiserver, /var/log/openshift-apiserver, /var/log/oauth-apiserver) have the correct permissions and ownership

            josorior@redhat.com Juan Antonio Osorio (Inactive)
            jhrozek@redhat.com Jakub Hrozek
            Prashant Dhamdhere Prashant Dhamdhere (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: