v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/terraform_azure_compliance
Overview
46Dashboards
291Controls
291Queries
2Variables
GitHub

Control: Ensure no SQL Databases allow ingress 0.0.0.0/0 (ANY IP)

Description

Ensure no SQL Databases allow ingress 0.0.0.0/0 (ANY IP). SQL Server includes a firewall to block access to unauthorized connections. More granular IP addresses can be defined by referencing the range of addresses available from specific datacenters.

Usage

Run the control in your terminal:

powerpipe control run terraform_azure_compliance.control.sql_database_allow_internet_access

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run terraform_azure_compliance.control.sql_database_allow_internet_access --share

SQL

This control uses a named query:

sql_database_allow_internet_access

Tags

category = Compliance
cis = true
cis_item_id = 6.3
cis_level = 1
cis_type = automated
plugin = terraform
service = Azure/SQL