Skip to main content

SLB ACL Public Access Check

ID: rule:aliyun:slb-acl-public-access-check
Severity: high

Description

Ensures that SLB ACLs do not contain 0.0.0.0/0 to prevent unrestricted public access.

Reason for Violation

Allowing 0.0.0.0/0 in an ACL bypasses the security benefits of access control, potentially exposing services to attacks.

Recommendation

Remove 0.0.0.0/0 from the SLB ACL entries and replace it with specific IP ranges.

Resource Types

ALIYUN::SLB::AccessControl

Description
Reason for Violation
Recommendation
Resource Types