<  Back to rules search

Redshift cluster is not publicly accessible

redshift

Classification:

compliance

このページは日本語には対応しておりません。随時翻訳に取り組んでいます。翻訳に関してご質問やご意見ございましたら、お気軽にご連絡ください。

Description

Confirm Redshift clusters are not publicly available.

Rationale

Publicly available Redshift clusters have a public IP address, which gives any machine the opportunity to attempt to connect to your clusters. Malicious activity, such as SQL injections or distributed denial-of-service (DDoS) attacks, can occur if a connection is established.

Remediation

Console

Follow the [Managing clusters in a VPC][7] docs to learn how to modify public accessibility for your clusters.