turbot/kubernetes_compliance

Control: DaemonSet containers should not be mapped with privilege ports

Description

Privileged ports `0 to 1024` should not be mapped with DaemonSet containers. Normal users and processes are not allowed to use them for various security reasons.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.daemonset_container_privilege_port_mapped

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.daemonset_container_privilege_port_mapped --share

SQL

This control uses a named query:

daemonset_container_privilege_port_mapped

Tags