Skip to main content

PolarDB Public Access Check

ID: rule:aliyun:polardb-public-access-check
Severity: high
IaC Types: ROS, Terraform

Description

Ensures PolarDB security_ips is not set to allow all source IPs (0.0.0.0/0).

Reason for Violation

The PolarDB cluster security_ips contains 0.0.0.0/0, which allows access from any IP and is a severe security risk.

Recommendation

Remove 0.0.0.0/0 from security_ips and use specific trusted IP ranges.

Resource Types

ROS: ALIYUN::POLARDB::DBCluster
Terraform: alicloud_polardb_cluster

Description
Reason for Violation
Recommendation
Resource Types