PlatformPricingCustomersResourcesSign inSign Up

Ensure Transfer Server is not exposed publicly

Error: Transfer Server is publicly exposed

Bridgecrew Policy ID: BC_AWS_NETWORKING_57
Checkov Check ID: CKV_AWS_164
Severity: MEDIUM

Suggest Edits

Transfer Server is publicly exposed

Description

TBD

Fix - Buildtime

Terraform

  • Resource: aws_transfer_server
  • Argument: endpoint_type
resource "aws_transfer_server" "test" {
  + endpoint_type = "VPC"
    protocols   = ["SFTP"]
}

CloudFormation

  • Resource: AWS::Transfer::Server
  • Argument: Properties.EndpointType
Resources: 
  VPC:
    Type: AWS::Transfer::Server
    Properties: 
        ...
+     EndpointType: "VPC" # or "VPC_ENDPOINT"

Updated 11 months ago

Did this page help you?