CloudWatch Logging Disabled
- Query id: 0f0fb06b-0f2f-4374-8588-f2c7c348c7a0
- Query name: CloudWatch Logging Disabled
- Platform: CloudFormation
- Severity: Medium
- Category: Observability
- CWE: 779
- URL: Github
Description¶
Check if CloudWatch logging is disabled for Route53 hosted zones
Documentation
Code samples¶
Code samples with security vulnerabilities¶
Positive test num. 1 - yaml file
AWSTemplateFormatVersion: "2010-09-09"
Description: "Router53"
Resources:
HostedZone3:
Type: AWS::Route53::HostedZone
Properties:
Name: "HostedZone"
Positive test num. 2 - json file
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "Router53",
"Resources": {
"HostedZone4": {
"Type": "AWS::Route53::HostedZone",
"Properties": {
"Name": "HostedZone"
}
}
}
}