Replies: 3 comments
-
@kwilczynski Here, I have started discussion |
Beta Was this translation helpful? Give feedback.
-
We generally like to think our OOTB configuration is a good baseline configuration for security. I'd also recommend making sure your /etc/containers/registries.conf doesn't enable any insecure registries (force the use of HTTPS). Lots of our options have equivalents in docker, so if there are specific recommendations CIS makes for docker it's likely there are equivalents in cri-o |
Beta Was this translation helpful? Give feedback.
-
Also, how does cri-o impacted by selinux setting? |
Beta Was this translation helpful? Give feedback.
-
As there is hardening guideline from CIS for Docker, is there some hardening guideline for CRI-O or may be some document that lists best practices to be followed while using CRI-O?
It can have list like:
or any other guideline
Beta Was this translation helpful? Give feedback.
All reactions