Control: 2.6 Ensure Anti-DDoS access and security log service is enabled

Description

Alibaba Cloud Anti-DDoS Pro supports integration with Log Service for website access log (including HTTP flood attack logs) to enable the real-time analysis and reporting center features. The log collected can be monitored on a central dashboard on Log Service.

Remediation

Perform the following ensure the Anti-DDoS access and security log is enabled:

From Console

Logon to Anti-DDoS Pro Console, and go to the Log > Full Log page.
Select the specific website for which you want to enable the Full Log service and click to turn on the Status switch.

Usage

Run the control in your terminal:

powerpipe control run alicloud_compliance.control.cis_v100_2_6

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run alicloud_compliance.control.cis_v100_2_6 --share

SQL

This control uses a named query:

manual_control

Control: 2.6 Ensure Anti-DDoS access and security log service is enabled

Description

Remediation

From Console

Usage

SQL

Tags