Skip to main content

SLB ACL Public Access Check

ID: rule:aliyun:slb-acl-public-access-check
Severity: high
IaC Types: ROS, Terraform

Description

Ensures that SLB ACLs do not contain 0.0.0.0/0 to prevent unrestricted public access.

Reason for Violation

Allowing 0.0.0.0/0 in an ACL bypasses the security benefits of access control, potentially exposing services to attacks.

Recommendation

Remove 0.0.0.0/0 from the SLB ACL entry_list entries and replace it with specific IP ranges.

Resource Types

ROS: ALIYUN::SLB::AccessControl
Terraform: alicloud_slb_acl

Description
Reason for Violation
Recommendation
Resource Types