Nifcloud ELB Use HTTP Protocol

• Query id: e2de2b80-2fc2-4502-a764-40930dfcc70a
• Query name: Nifcloud ELB Use HTTP Protocol
• Platform: Terraform
• Severity: High
• Category: Insecure Configurations
• URL: Github

Description

The elb use http protocol
Documentation

Code samples

Code samples with security vulnerabilities

Positive test num. 1 - tf file

resource "nifcloud_elb" "positive" {
  availability_zone = "east-11"
  instance_port     = 80
  protocol          = "HTTP"
  lb_port           = 80

  network_interface {
    network_id     = "net-COMMON_GLOBAL"
    is_vip_network = true
  }
}

Positive test num. 2 - tf file

resource "nifcloud_elb" "positive" {
  availability_zone = "east-11"
  instance_port     = 80
  protocol          = "HTTP"
  lb_port           = 80

  network_interface {
    network_id     = "net-COMMON_GLOBAL"
    is_vip_network = true
  }

  network_interface {
    network_id     = "net-COMMON_PRIVATE"
  }
}

Code samples without security vulnerabilities

Negative test num. 1 - tf file

resource "nifcloud_elb" "negative" {
  availability_zone = "east-11"
  instance_port     = 443
  protocol          = "HTTPS"
  lb_port           = 443

  network_interface {
    network_id     = "net-COMMON_GLOBAL"
    is_vip_network = true
  }
}