github.com/khulnasoft-lab/kube-bench@v0.2.1-0.20240330183753-9df52345ae58/cfg/gke-1.0/etcd.yaml (about) 1 --- 2 controls: 3 version: "gke-1.0" 4 id: 2 5 text: "Etcd Node Configuration" 6 type: "etcd" 7 groups: 8 - id: 2 9 text: "Etcd Node Configuration Files" 10 type: skip 11 checks: 12 - id: 2.1 13 text: "Ensure that the --cert-file and --key-file arguments are set as appropriate (Not Scored)" 14 remediation: "This control cannot be modified in GKE." 15 scored: false 16 17 - id: 2.2 18 text: "Ensure that the --client-cert-auth argument is set to true (Not Scored)" 19 remediation: "This control cannot be modified in GKE." 20 scored: false 21 22 - id: 2.3 23 text: "Ensure that the --auto-tls argument is not set to true (Not Scored)" 24 remediation: "This control cannot be modified in GKE." 25 scored: false 26 27 - id: 2.4 28 text: "Ensure that the --peer-cert-file and --peer-key-file arguments are 29 set as appropriate (Not Scored)" 30 remediation: "This control cannot be modified in GKE." 31 scored: false 32 33 - id: 2.5 34 text: "Ensure that the --peer-client-cert-auth argument is set to true (Not Scored)" 35 remediation: "This control cannot be modified in GKE." 36 scored: false 37 38 - id: 2.6 39 text: "Ensure that the --peer-auto-tls argument is not set to true (Not Scored)" 40 remediation: "This control cannot be modified in GKE." 41 scored: false 42 43 - id: 2.7 44 text: "Ensure that a unique Certificate Authority is used for etcd (Not Scored)" 45 remediation: "This control cannot be modified in GKE." 46 scored: false