AWS ELB Policy uses some unsecure protocols
Description
By ensuring that your AWS ELB policy only uses secure protocols, you can help prevent attackers from intercepting and reading sensitive information that is transmitted between your ELB and its clients. This can help protect your network and data from various types of attacks, including man-in-the-middle attacks, eavesdropping, and other types of data interception.
Code Example
go
resource "aws_load_balancer_policy" "pass" {
load_balancer_name = aws_elb.wu-tang.name
policy_name = "wu-tang-ssl"
policy_type_name = "SSLNegotiationPolicyType"
policy_attribute {
name = "Protocol-TLSv1.2"
value = "true"
}
}Remediation
Terraform
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0261 |
| Severity | LOW |
| IaC Type | Terraform |
| Frameworks | Terraform |
| Checkov ID | CKV_AWS_213 |