Back to All Checks
High ECS Regional

ECS containers should be limited to read-only access to root filesystems

NISTISO 27001HIPAA

Description

Checks if ECS containers are limited to read-only access to root filesystems.

Remediation

To limit container definitions to read-only access to root filesystems, update the task definition to set the readonlyRootFilesystem parameter to true.

Steps

  1. Open the Amazon ECS console.
  2. In the left navigation pane, choose Task definitions.
  3. Select a task definition and choose Create new revision with JSON.
  4. Add the readonlyRootFilesystem parameter, and set it to true in the container definition.
  5. Choose Create.

Compliance

NISTISO 27001HIPAA
Start Your Free Security Check