🔥 3-day streak
CompTIA SecurityX (CAS-005)11 / 120
Question 11 of 120

A DevSecOps team is hardening its Kubernetes workloads. During a security review, an analyst finds that production containers run as root, mount the host Docker socket for logging sidecars, and allow shell access via kubectl exec for troubleshooting. The team wants to reduce the container attack surface while keeping the ability to investigate incidents. Which combination of controls BEST hardens these containers without eliminating incident investigation capability?

Reviewed for accuracy · Report an issueNext question