Nifcloud LB Using Insecure TLS Policy ID

• Query id: 944439c7-b4b8-476a-8f83-14641ea876ba
• Query name: Nifcloud LB Using Insecure TLS Policy ID
• Platform: Terraform
• Severity: Medium
• Category: Encryption
• CWE: 295
• URL: Github

Description

The LB using insecure TLS policy
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - tf file

resource "nifcloud_load_balancer" "positive" {
  load_balancer_name = "example"
  instance_port      = 443
  load_balancer_port = 443
}

Positive test num. 2 - tf file

resource "nifcloud_load_balancer" "positive" {
  load_balancer_name = "example"
  instance_port      = 443
  load_balancer_port = 443
  ssl_policy_name    = "1"
}

Code samples without security vulnerabilities

Negative test num. 1 - tf file

resource "nifcloud_load_balancer" "negative" {
  load_balancer_name = "example"
  instance_port      = 443
  load_balancer_port = 443
  ssl_policy_id      = "4"
}