Ensure Route 53 entries relate to account resources only

Error: Route 53 A records should only point to AWS account resources

Bridgecrew Policy ID: BC_AWS_NETWORKING_53
Checkov Check ID:
Severity: CRITICAL

Ensure that Route53 A records are from the AWS Account

Description

Checks that all A records in Route 53 point to resources created in the current AWS account.

Rationale

A check to protect against domain hijacking, where an unrelated IP address is added to an AWS managed DNS zone.


Did this page help you?