turbot/kubernetes_compliance

Control: StatefulSet containers should not be mapped with privilege ports

Description

Privileged ports `0 to 1024` should not be mapped with StatefulSet containers. Normal users and processes are not allowed to use them for various security reasons.

Usage

Run the control in your terminal:

powerpipe control run kubernetes_compliance.control.statefulset_container_privilege_port_mapped

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run kubernetes_compliance.control.statefulset_container_privilege_port_mapped --share

SQL

This control uses a named query:

statefulset_container_privilege_port_mapped

Tags