Azure HTTP (port 80) access from the internet is not restricted

Description

Restricting access to Azure HTTP (port 80) from the internet can help improve the security of your resources. Port 80 is used for HTTP traffic, and allowing access to it from the internet can expose your resources to potential security threats, such as malware, data breaches, and unauthorized access.

Code Example

resource "azurerm_network_security_rule" "https" {
  name                        = "example"
  access                      = "Allow"
  direction                   = "Inbound"
  network_security_group_name = "azurerm_network_security_group.example.name"
  priority                    = 100
  protocol                    = "Tcp"
  resource_group_name         = "azurerm_resource_group.example.name"

  destination_port_range = 443
  source_address_prefix  = "Internet"
}

Remediation

Terraform

Resource: azurerm_network_security_rule
Arguments: destination_port_range

Rule Details

Field	Value
ID	IAC-0667
Severity	LOW
IaC Type	arm
Frameworks	Terraform
Checkov ID	CKV_AZURE_160

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

Azure HTTP (port 80) access from the internet is not restricted

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

Azure HTTP (port 80) access from the internet is not restricted ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

Azure HTTP (port 80) access from the internet is not restricted

Description

Code Example

Remediation

Rule Details

References