turbot/alicloud_compliance

GitHub
Loading controls...

Control: 2.6 Ensure Anti-DDoS access and security log service is enabled

Description

Alibaba Cloud Anti-DDoS Pro supports integration with Log Service for website access log (including HTTP flood attack logs) to enable the real-time analysis and reporting center features. The log collected can be monitored on a central dashboard on Log Service.

Remediation

Perform the following ensure the Anti-DDoS access and security log is enabled:

From Console

  1. Logon to Anti-DDoS Pro Console, and go to the Log > Full Log page.
  2. Select the specific website for which you want to enable the Full Log service and click to turn on the Status switch.

Usage

Run the control in your terminal:

steampipe check alicloud_compliance.control.cis_v100_2_6

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share alicloud_compliance.control.cis_v100_2_6

SQL

This control uses a named query:

manual_control

Tags