top of page
< Back

AWS Foundational Security Best Practice

ECS.1

Amazon ECS task definitions should have secure networking modes and user definitions.

Severity

Cloud Platforms

Resources

HIGH

AWS

Amazon Elastic Container Service

This control checks if an Amazon ECS Task Definition with host networking mode has privileged" or "user" container definitions. The control fails with host network mode and container definitions are privileged=false or empty and user=root or empty."

bottom of page