top of page

ECS.1

Amazon ECS task definitions should have secure networking modes and user definitions.

Severity

Cloud Platforms

Resources

Related Standards

Automated

HIGH

AWS

Amazon Elastic Container Service

AWS Foundational Best Practice, NIST.800-53.r5,

This control checks if an Amazon ECS Task Definition with host networking mode has privileged" or "user" container definitions. The control fails with host network mode and container definitions are privileged=false or empty and user=root or empty."

bottom of page