turbot/docker_compliance
GitHub
Loading controls...

Control: 2.3 Ensure the logging level is set to 'info'

Description

Set Docker daemon log level to info.

Setting up an appropriate log level, configures the Docker daemon to log events that you would want to review later. A base log level of info and above would capture all logs except debug logs. Until and unless required, you should not run Docker daemon at debug log level.

Remediation

Ensure that the Docker daemon configuration file has the following configuration included

"log-level": "info"

Alernatively, run the docker daemon as below

dockerd --log-level="info"

Default Value

By default, Docker daemon is set to log level of info.

Usage

Run the control in your terminal:

steampipe check docker_compliance.control.cis_v160_2_3

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share docker_compliance.control.cis_v160_2_3

SQL

This control uses a named query:

exec_logging_level_set_to_info

Tags