SYS.1.6.A22 #22

sluetze · 2023-11-07T14:30:17Z

No description provided.

sluetze · 2024-07-17T11:09:54Z

In order to have containers available for later investigation if necessary, an image of the state SHOULD be created according to defined rules.

The OpenShift container runtime environment used does not provide a function for creating a memory image of a running container. The running containers can be listed and different parameters can be queried and saved for them. Further data (such as running processes) can be queried via the host. Using the operating system, memory dumps (core dump) or file system data (ephemeral and persistent) can also be backed up. The memory dumps can also be created with third-party operators [CoreDump].

benruland · 2024-10-04T09:58:41Z

I would argue to assess this control partial. Some functionality is inherently provided by OpenShift (and linux), others is missing.

The notes pretty much sum up the current state. To fully adress the the requirement (automatic creation of "state images" according to rules", we would imho need a 3rd party solution.

benruland · 2024-10-04T10:18:09Z

PR: ComplianceAsCode#12470

benruland self-assigned this Sep 6, 2024

benruland added the not-checkable Requirement can not be checked with Compliance Operator label Oct 4, 2024

benruland mentioned this issue Oct 31, 2024

Defined notes for BSI SYS.1.6.A22 and A23 ComplianceAsCode/content#12470

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SYS.1.6.A22 #22

SYS.1.6.A22 #22

sluetze commented Nov 7, 2023

sluetze commented Jul 17, 2024

benruland commented Oct 4, 2024 •

edited

Loading

benruland commented Oct 4, 2024

SYS.1.6.A22 #22

SYS.1.6.A22 #22

Comments

sluetze commented Nov 7, 2023

sluetze commented Jul 17, 2024

benruland commented Oct 4, 2024 • edited Loading

benruland commented Oct 4, 2024

benruland commented Oct 4, 2024 •

edited

Loading