Redis Not Updated Regularly
- Query id: b947809d-dd2f-4de9-b724-04d101c515aa
- Query name: Redis Not Updated Regularly
- Platform: Terraform
- Severity: High
- Category: Insecure Configurations
- URL: Github
Description¶
Redis Cache is not configured to be updated regularly with security and operational updates
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - tf file
resource "azurerm_redis_cache" "positive1" {
name = "timeout-redis"
location = "West Europe"
resource_group_name = azurerm_resource_group.example_rg.name
subnet_id = azurerm_subnet.example_redis_snet.id
family = "P"
capacity = 1
sku_name = "Premium"
shard_count = 1
enable_non_ssl_port = false
minimum_tls_version = "1.2"
redis_configuration {
enable_authentication = true
maxmemory_policy = "volatile-lru"
}
}
Code samples without security vulnerabilities¶
Negative test num. 1 - tf file
resource "azurerm_redis_cache" "negative1" {
name = "timeout-redis"
location = "West Europe"
resource_group_name = azurerm_resource_group.example_rg.name
subnet_id = azurerm_subnet.example_redis_snet.id
family = "P"
capacity = 1
sku_name = "Premium"
shard_count = 1
enable_non_ssl_port = false
minimum_tls_version = "1.2"
redis_configuration {
enable_authentication = true
maxmemory_policy = "volatile-lru"
}
patch_schedule {
day_of_week = "Thursday"
start_hour_utc = 7
}
}