CIS Finding (6.1.10 - World Writable File)

Hi all

While doing CIS Lv2 Host Configuration Reviews, we have the following finding:

  • 6.1.10 - Ensure no world writable files exist

Based on searches on internet, my team found the following two links:

My team has tried to configure 755 or 644 to the files and subfolders under k3s. However, our pods are not able to run without the write permissions.

Based on the above two links, our team would like to check if this is a current limitation on the k3s Platform?

Thanks a lot for your help.

Kim guan