Skip to content

Multiple findings based on single query for one terraform resource #5950

Closed Answered by rafaela-soares
kazaker asked this question in Q&A
Discussion options

You must be logged in to vote

Hello @kazaker

Thank you so much for using KICS and reaching us!

This query iterates over all the ports that KICS considers sensitive (63 ports). You can find them here. For each one, KICS will verify the ingress of the security group and it will evaluate if the sensitive port is being targeted under TCP or UDP protocol. That's why it returns many results.

The first sample defines the ingress from ports 20 to 22 under TCP protocol, which means that covers ports 20, 21 e 22 (KICS considers all sensitive). That's why the query produces 3 findings.

resource "aws_security_group" "positive4" {
name = "allow_tls4"
description = "Allow TLS inbound traffic"
vpc_id = aws_vpc.main.id
ingress {
desc…

Replies: 3 comments

Comment options

You must be logged in to vote
0 replies
Answer selected by kazaker
Comment options

You must be logged in to vote
0 replies
Comment options

You must be logged in to vote
0 replies
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Category
Q&A
Labels
None yet
2 participants