cfn-nag工具在云信息模板中寻找可能表明基础设施不安全的模式。粗略地说,它将寻找:权限过大的IAM规则(通配符) 权限过大的安全组规则(通配符) 未启用的访问日志 未启用的加密 Password literals有关该工具的更多背景信息,请参见Stelligent博客上的这篇文章:...
The cfn-nag tool looks for patterns in CloudFormation templates that may indicate insecure infrastructure. Roughly speaking, it will look for: IAM rules that are too permissive (wildcards) Security group rules that are too permissive (wildcards) Access logs that aren't enabled Encryption that isn...
stelligent-cfn_nag 是一款专为 CloudFormation 模板设计的静态分析工具,旨在帮助开发者在云基础设施的开发过程中尽早发现潜在的安全问题。stelligent-cfn_nag 是一个专注于 CloudFormation 模板安全的静态分析工具。它通过一系列自定义规则来检查
Tag: cfn-nagSorry, the page you tried cannot be found. You may have typed the address incorrectly or you may have used an outdated link.Learn About AWS What Is AWS? What Is Cloud Computing? AWS Accessibility AWS Inclusion, Diversity & Equity What Is DevOps? What Is a Container? What ...
Ref VpcCIDREnableDnsSupport:trueEnableDnsHostnames:trueFlowLog:Type:AWS::EC2::FlowLogProperties:LogGroupName:FlowLogsGroupResourceId:!Ref VPCResourceType:VPCTrafficType:ALLNetworkAcl:Type:AWS::EC2::NetworkAclProperties:VpcId:!Ref VPCNetworkAclEntry1:Type:AWS::EC2::NetworkAclEntryMetadata:cfn_nag:...
杨兵目前担任河南安润建材有限公司、河南标鹏工程机械有限公司等5家企业法定代表人,同时在3家企业担任高管,包括担任河南安润建材有限公司执行董事兼总经理,河南标鹏工程机械有限公司财务负责人,执行董事兼总经理;二、杨兵投资情况:杨兵目前是3家企业直接控股股东,包括河南安润建材有限公司、控股比例达100%,兰考县庆钢建材...
人物简介: 一、王飞担任职务:担任烟台腾吉达信息技术有限公司监事;二、王飞的商业合作伙伴:基于公开数据展示,王飞与丁业钢为商业合作伙伴。 老板履历 图文概览商业履历 任职全景图 投资、任职的关联公司 商业关系图 一图看清商业版图 合作伙伴 了解老板合作关系 ...
和@阿 酷 🆒 一起 #合拍 浙这几天高温太热了拍个抖音,开开心。 和@阿 酷 🆒 一起 #合拍 浙这几天高温太热了拍个抖音,开开心。 104 发个抖音上班喽 发个抖音上班喽 111 抖一个上班了 抖一个上班了 48 下班回家的路上。 下班回家的路上。 99 嗨我又来了不管别人怎么自己开心就好。 嗨我又来...
27 changes: 27 additions & 0 deletions 27 lib/cfn-nag/custom_rules/EMRClusterSecurityConfigurationAttachedRule.rb Original file line numberDiff line numberDiff line change @@ -0,0 +1,27 @@ # frozen_string_literal: true require 'cfn-nag/violation' require_relative 'base' class EMRClusterSec...
and then pipe your template through cfn_nag like so: cat bad.yml | cfn_nag --parameter-values-path foo.json you should get the result you want. That said, I will work on getting a fix out for the ingress and egress rules which both have this problem. Thanks for finding this!