File: SRG-APP-000439-CTR-001080.yml

package info (click to toggle)
scap-security-guide 0.1.76-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid, trixie
  • size: 110,644 kB
  • sloc: xml: 241,883; sh: 73,777; python: 32,527; makefile: 27
file content (21 lines) | stat: -rw-r--r-- 628 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
 
controls:
- id: SRG-APP-000439-CTR-001080
  levels:
  - medium
  title: The application must protect the confidentiality and integrity of transmitted
    information.
  status: manual
  check: |-
    Verify that routes and ingress are using secured transmission ports and protocols by executing the following:

    oc get routes --all-namespaces

    Review the ingress ports, if the Ingress is not using a secure TLS transport, this is a finding.
  fixtext: |-
    Delete any Route or Ingress that does not use a secure transport.

    oc delete route <NAME> -n <NAMESPACE>

    or

    oc delete ingress <NAME> -n <NAMESPACE>