Uploaded image for project: 'Cloud Infrastructure Security & Compliance'
  1. Cloud Infrastructure Security & Compliance
  2. CMP-972

[AU-9]: Check file and directory permissions for apiserver audit logs

XMLWordPrintable

    • 1
    • False
    • False
    • OCPPLAN-6104 - FedRAMP moderate controls
    • Undefined
    • CMP Sprint 31

      AU-9 says:

      The information system protects audit information and audit tools from unauthorized access, modification, and deletion.

      We should make sure that the directories that store the apiserver audit logs (/var/log/kube-apiserver, /var/log/openshift-apiserver, /var/log/oauth-apiserver) have the correct permissions and ownership

              josorior@redhat.com Juan Antonio Osorio (Inactive)
              jhrozek@redhat.com Jakub Hrozek (Inactive)
              Prashant Dhamdhere Prashant Dhamdhere (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: