STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Container Platform Security Requirements Guide

V-233133

CAT II (Medium)

The container platform must generate error messages that provide information necessary for corrective actions without revealing information that could be exploited by adversaries.

Rule ID

SV-233133r961167_rule

STIG

Container Platform Security Requirements Guide

Version

V2R4

CCIs

CCI-001312

Discussion

The container platform is responsible for offering services to users. These services could be across diverse user groups and data types. To protect information about the container platform, services, users, and data, it is important during error message generation to offer enough information to diagnose the error, but not reveal information that needs to be protected.

Check Content

Review documentation and logs to determine if the container platform writes sensitive information such as passwords or private keys into the logs and administrative messages. 

If the container platform writes sensitive or potentially harmful information into the logs and administrative messages, this is a finding.

Fix Text

Configure the container platform to not write sensitive information into the logs and administrative messages.