As suggested all scc rules added

sig-bsi-grundschutz · Oct 23, 2024 · f9d3297 · f9d3297
1 parent 44ba7b1
commit f9d3297
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/controls/bsi_sys_1_6.yml b/controls/bsi_sys_1_6.yml
@@ -448,9 +448,17 @@ controls:
     status: automated
     rules:
       #  Section 2:
-      - scc_limit_host_dir_volume_plugin
+      - scc_drop_container_capabilities
       - scc_limit_container_allowed_capabilities
+      - scc_limit_host_dir_volume_plugin
+      - scc_limit_host_ports
+      - scc_limit_ipc_namespace
+      - scc_limit_net_raw_capability
+      - scc_limit_network_namespace
       - scc_limit_privilege_escalation
+      - scc_limit_privileged_containers
+      - scc_limit_process_id_namespace
+      - scc_limit_root_containers
 
   - id: SYS.1.6.A17
     title: Running Containers Without Privileges