Skip to main content

PolarDB Public and Any IP Access Check

ID: rule:aliyun:polardb-public-and-any-ip-access-check
Severity: high

Description

Ensures that PolarDB clusters do not have public endpoints and are not open to any IP address (0.0.0.0/0).

Reason for Violation

Exposing a database to the public internet or any IP address is a significant security risk.

Recommendation

Disable public endpoints for the PolarDB cluster and restrict the white list to specific IP addresses.

Resource Types

ALIYUN::POLARDB::DBCluster

Description
Reason for Violation
Recommendation
Resource Types