From 762eb297233559055dc5bc804ad2efb882683ef2 Mon Sep 17 00:00:00 2001 From: Manuel Weber Date: Sat, 18 May 2024 16:07:46 +0200 Subject: [PATCH] azure/flexible: Ensure SSL connection enabled for MySQL Database Server with the latest version++ Signed-off-by: Manuel Weber --- core/mondoo-azure-security.mql.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/core/mondoo-azure-security.mql.yaml b/core/mondoo-azure-security.mql.yaml index 8c9d572a..5f843b58 100644 --- a/core/mondoo-azure-security.mql.yaml +++ b/core/mondoo-azure-security.mql.yaml @@ -1681,8 +1681,6 @@ queries: mql: | azure.subscription.mySql.server.properties.sslEnforcement == "Enabled" azure.subscription.mySql.server.properties.minimalTlsVersion == "TLS1_2" - azure.subscription.mySql.flexibleServers.all(configuration.where(name == "require_secure_transport").all(value.downcase == "on")) - azure.subscription.mySql.flexibleServers.all(configuration.where(name == "tls_version").all(value.downcase == "tlsv1.2")) - uid: mondoo-azure-security-ensure-that-ssl-enabled-latest-version-mysql-api filters: | asset.platform == "azure" @@ -1690,6 +1688,8 @@ queries: mql: | azure.subscription.mySql.servers.all(properties.sslEnforcement == "Enabled") azure.subscription.mySql.servers.all(properties.minimalTlsVersion == "TLS1_2") + azure.subscription.mySql.flexibleServers.all(configuration.where(name == "require_secure_transport").all(value.downcase == "on")) + azure.subscription.mySql.flexibleServers.all(configuration.where(name == "tls_version").all(value.downcase == "tlsv1.2")) - uid: mondoo-azure-security-ensure-disabled-public-access-sql title: Ensure public network access for SQL server is blocked or Limited to Use Selected Networks Instead of All Networks impact: 80