Azure App Services Remote debugging is enabled
Description
Remote debugging allows you to remotely connect to a running app and debug it from a different location. While this can be useful for developers who need to troubleshoot issues with their app, it also introduces a potential security risk because it allows someone to remotely access your app and potentially modify its code or behavior. If remote debugging is enabled for your app services, it could potentially be exploited by an attacker to gain unauthorized access to your app and potentially compromise it. This could result in data loss, financial damage, or other negative consequences.
Code Example
go
resource "azurerm_app_service" "example" {
...
+ remote_debugging_enabled = false
}Remediation
Terraform
- Resource: azurerm_app_service
- Arguments: remote_debugging_enabled
Rule Details
| Field | Value |
|---|---|
| ID | IAC-0580 |
| Severity | MEDIUM |
| IaC Type | arm |
| Frameworks | Terraform, TerraformPlan |
| Checkov ID | CKV_AZURE_72 |