Hardened Linux images overview

To support your secure computing infrastructure, Perforce OpenLogic offers Enterprise Virtual Machine (VM) and Container images for various Linux distributions. These images are hardened according to the Center for Internet Security (CIS) benchmarks, which are updated regularly. OpenLogic incorporates applicable benchmark updates into the images as they become available to ensure alignment with the latest CIS security recommendations. This includes the CIS Level 1 and CIS Level 2 security profiles. To learn more, see the CIS Benchmarks List.

A Linux VM image, provided in VMDK (Virtual Machine Disk) and QEMU Copy-On-Write version 2 (QCOW2) format, is a particular installation of a Linux distribution for use in various environments.

A Linux container image, available through the OpenLogic container registry, is a preconfigured instance of a Linux distribution packaged for use in containerized environments such as Docker, Kubernetes, and CI/CD pipelines.

Hardened images for the following distributions are currently available:

AlmaLinux 8.10 and 9.5
Debian Linux 12
Rocky Linux 8.9, 8.10, and 9.5
Ubuntu 22.04 and 24.04

As an existing OpenLogic customer leveraging Enterprise Linux CVE patching services, you can migrate to a CIS hardened image and then apply your own organizational benchmarks as needed.

Certain security measures cannot be applied to Linux images or are not appropriate for Linux images. To learn more, see Exclusions from hardened Linux images.