Redshift clusters are not using the default database name.

Description

This policy is checking to ensure that Redshift clusters are not using the default database name. Using the default database name in AWS Redshift clusters can pose a security risk as it can be easily guessed by malicious actors. They could potentially gain unauthorized access to your database if other security measures are weak or compromised. For enhanced security, it is recommended to use a unique database name that cannot be easily guessed.

Code Example

resource "aws_redshift_cluster" "default" {
  cluster_identifier = "tf-redshift-cluster"
  database_name      = "my_db"
}

Remediation

Terraform

Resource: aws_redshift_cluster
Arguments: database_name

To fix the issue, you need to ensure that your Redshift clusters are not using the default database name. You should specify a unique name for every Redshift cluster you create.

Rule Details

Field	Value
ID	IAC-0367
Severity	MEDIUM
IaC Type	Terraform
Frameworks	Terraform, TerraformPlan
Checkov ID	CKV_AWS_320

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Redshift clusters are not using the default database name.

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Redshift clusters are not using the default database name. ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Redshift clusters are not using the default database name.

Description

Code Example

Remediation

Rule Details

References