RDS Instance Public Access Check
ID: rule:aliyun:rds-public-access-check
Severity: high
IaC Types: ROS, Terraform
Description
RDS instances should not be configured with public network addresses. Public access exposes databases to potential security threats from the internet.
Reason for Violation
The RDS instance is configured with public network access, which exposes the database to security risks from the internet.
Recommendation
Do not create alicloud_db_connection resources to avoid allocating public network addresses for RDS instances.
Resource Types
- ROS:
ALIYUN::RDS::DBInstance - Terraform:
alicloud_db_connection