Versions Compared

Old Version 6

changes.mady.by.user Randy Stricklin

Saved on

compared with

New Version 7

changes.mady.by.user Randy Stricklin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...


Project Name

Vuls Scan

  • Pass/Fail
  • Exceptions

Lynis Scan

  • Pass/Fail
  • Exceptions

Kube-Hunter Scan

  • Pass/Fail
  • Exceptions
1ELIOT SD-WAN/WAN Edge/uCPE Blueprint

The following exceptions must be fixed prior to maturity review:

  1. CAP_NET_RAW Enabled - CAP_NET_RAW is enabled by default for pods.  If an attacker manages to compromise a pod, they could potentially take advantage of this capability to perform network attacks on other pods running on the same node.
2Enterprise Applications on Lightweight 5G Telco Edge

The following exceptions must be fixed prior to maturity review:

  1. CAP_NET_RAW Enabled - CAP_NET_RAW is enabled by default for pods.  If an attacker manages to compromise a pod, they could potentially take advantage of this capability to perform network attacks on other pods running on the same node.
3Public Cloud Edge Interface (PCEI) Blueprint

The following exceptions must be fixed prior to maturity review:

  1. test ID AUTH-9328 (Default umask values)

Reason: <Oleg Berzin> Cannot fix AUTH-9328 because changing unmask value to 027 caused lynis test suite to fail (does not run)

The following exceptions must be fixed prior to maturity review:

  1. CAP_NET_RAW Enabled - CAP_NET_RAW is enabled by default for pods.  If an attacker manages to compromise a pod, they could potentially take advantage of this capability to perform network attacks on other pods running on the same node.
4The AI Edge: Federated ML application at edgeRelease 5: Akraino CVE Vulnerability Exception Request

5



6



7



8



9



10



11



12



13



14



15



16



17



18



19



20



21



22



23



24



25



26



27



28



29



30



31



32



...