💼 [WAF.10] AWS WAF web ACLs should have at least one rule or rule group
-
Contextual name: 💼 [WAF.10] AWS WAF web ACLs should have at least one rule or rule group
-
ID:
/frameworks/aws-fsbp-v1.0.0/waf/10 -
Located in: 💼 WAF
Description​
A web ACL gives you fine-grained control over all of the HTTP(S) web requests that your protected resource responds to. A web ACL should contain a collection of rules and rule groups that inspect and control web requests. If a web ACL is empty, the web traffic can pass without being detected or acted upon by AWS WAF depending on the default action.
Similar​
- AWS Security Hub
- Internal
- ID:
dec-c-48e9f075
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 CA-9(1) Internal System Connections _ Compliance Checks | 21 | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 CM-2 Baseline Configuration | 7 | 25 |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|