Loading controls...
Control: ELB listeners SSL/TLS protocol version should be checked
Description
Using insecure ciphers for your ELB Predefined or Custom Security Policy, could make the SSL connection between the client and the load balancer vulnerable to exploits. TLS 1.0 was recommended to be disabled by PCI Council after June 30, 2016.
Usage
Run the control in your terminal:
powerpipe control run aws_compliance.control.elb_tls_listener_protocol_version
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.elb_tls_listener_protocol_version --share
SQL
This control uses a named query:
elb_tls_listener_protocol_version