Skip to content

Commit

Permalink
azure/flexible: Ensure SSL connection enabled for MySQL Database Serv…
Browse files Browse the repository at this point in the history 
…er with the latest version++

Signed-off-by: Manuel Weber <[email protected]>
  • Loading branch information
@mm-weber
mm-weber committed May 18, 2024
1 parent bd9c357 commit 762eb29
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions core/mondoo-azure-security.mql.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1681,15 +1681,15 @@ queries:
mql: |
azure.subscription.mySql.server.properties.sslEnforcement == "Enabled"
azure.subscription.mySql.server.properties.minimalTlsVersion == "TLS1_2"
azure.subscription.mySql.flexibleServers.all(configuration.where(name == "require_secure_transport").all(value.downcase == "on"))
azure.subscription.mySql.flexibleServers.all(configuration.where(name == "tls_version").all(value.downcase == "tlsv1.2"))
- uid: mondoo-azure-security-ensure-that-ssl-enabled-latest-version-mysql-api
filters: |
asset.platform == "azure"
asset.kind == "api"
mql: |
azure.subscription.mySql.servers.all(properties.sslEnforcement == "Enabled")
azure.subscription.mySql.servers.all(properties.minimalTlsVersion == "TLS1_2")
azure.subscription.mySql.flexibleServers.all(configuration.where(name == "require_secure_transport").all(value.downcase == "on"))
azure.subscription.mySql.flexibleServers.all(configuration.where(name == "tls_version").all(value.downcase == "tlsv1.2"))

Check failure on line 1692 in core/mondoo-azure-security.mql.yaml

View workflow job for this annotation

GitHub Actions / Run spell check 

`tlsv` is not a recognized word. (unrecognized-spelling)
- uid: mondoo-azure-security-ensure-disabled-public-access-sql
title: Ensure public network access for SQL server is blocked or Limited to Use Selected Networks Instead of All Networks
impact: 80
Expand Down

0 comments on commit 762eb29

Please sign in to comment.