diff options
author | Michael Boelen <michael.boelen@cisofy.com> | 2016-07-24 18:22:00 +0300 |
---|---|---|
committer | Michael Boelen <michael.boelen@cisofy.com> | 2016-07-24 18:22:00 +0300 |
commit | 2f4c854ba7790d1c8fb8c664daea6c971f18aa72 (patch) | |
tree | c3eed34233a165d56df1173b3f08e047b47ae47e /include/tests_containers | |
parent | 0b5af4ed387ea0582181e56a56609c4a633cb91f (diff) |
Rename of categories, introduction of groups
Diffstat (limited to 'include/tests_containers')
-rw-r--r-- | include/tests_containers | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/include/tests_containers b/include/tests_containers index dd745126..bc91dbe9 100644 --- a/include/tests_containers +++ b/include/tests_containers @@ -33,7 +33,7 @@ # Test : CONT-8004 # Description : Query running Solaris zones if [ -x /usr/sbin/zoneadm ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no CONT-8004 --os Solaris --weight L --network NO --description "Query running Solaris zones" + Register --test-no CONT-8004 --os Solaris --weight L --network NO --category security --description "Query running Solaris zones" if [ ${SKIPTEST} -eq 0 ]; then LogText "Test: query zoneadm to list all running zones" FIND=`/usr/sbin/zoneadm list -p | awk -F: '{ if ($2!="global") print $0 }'` @@ -59,7 +59,7 @@ # Test : CONT-1906 # Description : Query running Xen zones #if [ -x /usr/bin/xm ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - #Register --test-no CONT-1906 --weight L --network NO --description "Query Xen guests" + #Register --test-no CONT-1906 --weight L --network NO --category security --description "Query Xen guests" #if [ ${SKIPTEST} -eq 0 ]; then # Show Xen guests #FIND=`xm list | awk '$1 != "Name|Domain-0" {print $1","$2}'` @@ -74,7 +74,7 @@ # # Test : CONT-8102 # Description : Checking Docker daemon status and basic information for later tests - Register --test-no CONT-8102 --weight L --network NO --description "Checking Docker status and information" + Register --test-no CONT-8102 --weight L --network NO --category security --description "Checking Docker status and information" if [ ${SKIPTEST} -eq 0 ]; then IsRunning "docker -d" if [ ${RUNNING} -eq 1 ]; then @@ -92,7 +92,7 @@ # Description : Checking Docker info for any warnings # Notes : Hardening points are awarded, as usually warnings are the result of missing controls to restrict boundaries like memory if [ ! "${DOCKERBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no CONT-8104 --preqs-met ${PREQS_MET} --weight L --network NO --description "Checking Docker info for any warnings" + Register --test-no CONT-8104 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Checking Docker info for any warnings" if [ ${SKIPTEST} -eq 0 ]; then COUNT=0 LogText "Test: Check for any warnings" @@ -120,7 +120,7 @@ # Description : Checking Docker containers (basic stats) # Notes : Hardening points are awarded, if there aren't a lot of stopped containers if [ ! "${DOCKERBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no CONT-8106 --preqs-met ${PREQS_MET} --weight L --network NO --description "Gather basic stats from Docker" + Register --test-no CONT-8106 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Gather basic stats from Docker" if [ ${SKIPTEST} -eq 0 ]; then Display --indent 6 --text "- Containers" @@ -173,7 +173,7 @@ # Description : Checking Docker file permissions # Notes : /var/run/docker.sock - Usually root as owner, docker as group - should not be world writable if [ ! "${DOCKERBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi - Register --test-no CONT-8108 --preqs-met ${PREQS_MET} --weight L --network NO --description "Check file permissions for Docker files" + Register --test-no CONT-8108 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Check file permissions for Docker files" if [ ${SKIPTEST} -eq 0 ]; then NOT_WORLD_WRITABLE="/var/run/docker.sock" for I in ${NOT_WORLD_WRITABLE}; do |