security hub vulnerability

0

I am trying to pass security hub checks, then i have the vulnerability "ECS containers should run as non-privileged"

How do i address this?

Topics

Tags

Amazon Elastic Container Service

Language

English

asked 6 months ago140 views

1 Answer

Newest
Most votes
Most comments

1

Accepted Answer

Hi,

Have a look at https://docs.aws.amazon.com/AmazonECS/latest/developerguide/task_definition_parameters.html re. boolean "privileged"

Some of your containers run with "privileged" = true. They must all run with privileged = false to pass the hub checks.

Before switching to false, you have to understaned why those currently run with privileged = true.

See for example https://learn.snyk.io/lesson/container-runs-in-privileged-mode/ for good explanations.

Best,

Didier

EXPERT

answered 6 months ago

EXPERT

reviewed 6 months ago

emmanlaw32
6 months ago
Thanks so much. It solved the problem for me.

Relevant content

How to download Security Hub csv file containing 21+ records
Karl_Tokyo
asked 3 months ago
Security Vulnerabilities related to Cloud and Development
Accepted Answer
cloudarch
asked a year ago
Security Hub Issue
Accepted Answer
emmanlaw32
asked 6 months ago
Security Hub Question
Accepted Answer
emmanlaw32
asked 6 months ago
Why did Security Hub initiate the finding "Lambda function policies should prohibit public access"?
AWS OFFICIALUpdated a year ago
How can I use Security Hub to monitor security issues for my AWS environment?
AWS OFFICIALUpdated 2 years ago
How do I resolve an empty or “0%” security score or a “No data” compliance status in Security Hub?
AWS OFFICIALUpdated a year ago
How can I check Firewall Manager security group policy findings using Security Hub?
AWS OFFICIALUpdated 10 months ago
Announcing 4 new widgets on AWS Console Home - Security Hub, Ops summary, Patch compliance, and Managed instances
EXPERT
Grace Kitzmiller
published a year ago
Experimenting with Cost Optimization Hub Boto3 API
EXPERT
Fernando_F
published 5 months ago