Skip to content

release/v1.8.0
Compare
Choose a tag to compare
@kshrutik kshrutik released this 07 Aug 01:37
· 21 commits to master since this release
v1.8.0
f8159ff
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Release notes:

New remediation jobs added for AWS:

  • Configure the EBS volume snapshot as private (ebs_private_snapshot) Rule ID - 2cdb8877-7ac3-4483-9ed0-1e792171d125
  • Enable automatic minor version upgrade for RDS DBInstance (rds_enable_version_update) Rule ID - 5c8c264a7a550e1fb6560c4c
  • Disable public access to RDS DBInstances (rds_remove_public_endpoint) Rule ID - 5c8c26467a550e1fb6560c48
  • Encrypt Kinesis data stream (kinesis_encrypt_stream) Rule ID - ce603728-d631-4bae-8657-c22da6e5944e
  • Set minimum password length for an AWS account (aws_iam_password_policy_min_length) Rule ID - 5c8c260b7a550e1fb6560bf4
  • Set Password Reuse Prevention Policy for an AWS Account (aws_iam_password_reuse_prevention) Rule ID - 5c8c26107a550e1fb6560bfc
  • Delete Expired IAM Server Certificate (aws_iam_server_certificate_expired) Rule ID - 7fe4eb28-3b82-11eb-adc1-0242ac120002
  • Configure default Security Group to restrict all access (aws_ec2_default_security_group_traffic) Rule ID - 5c8c25f37a550e1fb6560bca
  • Close Port 1433 for all Security Groups associated with an EC2 Instance (ec2_close_port_1433) Rule ID - 5c8c26417a550e1fb6560c3d
  • Close Port 1521 for all Security Groups associated with an EC2 Instance (ec2_close_port_1521) Rule ID - 5c8c26417a550e1fb6560c3e
  • Close Port 20 for all Security Groups associated with an EC2 Instance (ec2_close_port_20) Rule ID - 5c8c263d7a550e1fb6560c39
  • Close Port 21 for all Security Groups associated with an EC2 Instance (ec2_close_port_21) Rule ID - 5c8c263d7a550e1fb6560c3a
  • Close Port 23 for all Security Groups associated with an EC2 Instance (ec2_close_port_23) Rule ID - 5c8c263e7a550e1fb6560c3b
  • Close Port 27017 for all Security Groups associated with an EC2 Instance (ec2_close_port_27017) Rule ID - 5c8c26427a550e1fb6560c40
  • Close Port 3306 for all Security Groups associated with an EC2 Instance (ec2_close_port_3306) Rule ID - 5c8c26427a550e1fb6560c41
  • Close Port 5439 for all Security Groups associated with an EC2 Instance (ec2_close_port_5439) Rule ID - 5c8c26447a550e1fb6560c44
  • Close Port 5601 for all Security Groups associated with an EC2 Instance (ec2_close_port_5601) Rule ID - 4823ede0-7bed-4af0-a182-81c2ada80203
  • Close Port 8080 for all Security Groups associated with an EC2 Instance (ec2_close_port_8080) Rule ID - 5c8c26407a550e1fb6560c3c
  • Close Port 9200, 9300 for all Security Groups associated with an EC2 Instance (ec2_close_port_9200_9300) Rule ID - 04700175-adbe-49e1-bc7a-bc9605597ce2

Updated remediation jobs for AWS:

  • Remove Network ACL Rules that allows public access to administration ports (3389 and 22) (aws_ec2_administration_ports_ingress_allowed) Rule ID - 1ec4a1f2-3e08-11eb-b378-0242ac130002
  • Close Port 22 for all Security Groups associated with an EC2 Instance (ec2_close_port_22) Rule ID - 5c8c26417a550e1fb6560c3f
  • Close Port 3389 for all Security Groups associated with an EC2 Instance (ec2_close_port_3389) Rule ID - 5c8c26437a550e1fb6560c42
  • Close Port 22 for a Security Group (security_group_close_port_22) Rule ID - 5c8c25ec7a550e1fb6560bbe
  • Close Port 3389 for a Security Group (security_group_close_port_3389) Rule ID - 5c8c25ef7a550e1fb6560bc4
  • Close Port 5432 for a Security Group (security_group_close_port_5432) Rule ID - 5c8c25f07a550e1fb6560bc6
Assets 2
Loading