Skip to content

Commit

Permalink
Merge pull request #116 from openraven/fixing-password-policy
Browse files Browse the repository at this point in the history 
- Fixing passwordPolicy -> PasswordPolicy
  • Loading branch information
@mikey96
mikey96 authored Dec 13, 2023
2 parents c54529f + 389be49 commit 0b59802
Show file tree
Hide file tree
Showing 6 changed files with 18 additions and 19 deletions.
6 changes: 3 additions & 3 deletions .../rules/aws-iam-and-security-ensure-iam-password-policy-requires-one-uppercase-letter.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,9 +11,9 @@ enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'requireUppercaseCharacters' = 'false');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'requireUppercaseCharacters' = 'false');
remediation: >
Amend password policy to ensure passwords require at least one uppercase letter.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8
6 changes: 3 additions & 3 deletions resources/rules/aws-iam-and-security-ensure-iam-password-requires-one-lowercase-letter.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,9 +12,9 @@ enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'requireLowercaseCharacters' = 'false');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'requireLowercaseCharacters' = 'false');
remediation: >
Amend password policy to ensure passwords require at least one lowercase letter.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8
7 changes: 3 additions & 4 deletions resources/rules/aws-iam-and-security-ensure-iam-password-requires-one-number.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,14 +7,13 @@ name: >
description: >
This rule identifies an IAM password policy that does not require at least one number. This is one of the components that helps to make up password policy best practices.
severity: low
severity: low
enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'requireNumbers' = 'false');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'requireNumbers' = 'false');
remediation: >
Amend password policy to ensure passwords require at least one number.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8
6 changes: 3 additions & 3 deletions resources/rules/aws-iam-and-security-iam-password-policy-length.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,9 +10,9 @@ enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'minimumPasswordLength' < '14');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'minimumPasswordLength' < '14');
remediation: >
Amend password policy to ensure passwords require a minimum length of 14.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8
6 changes: 3 additions & 3 deletions resources/rules/aws-iam-and-security-iam-password-policy-reuse.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,9 +10,9 @@ enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'passwordReusePrevention' != '24');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'passwordReusePrevention' != '24');
remediation: >
Amend password policy to prevent password re-use.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8
6 changes: 3 additions & 3 deletions resources/rules/aws-iam-and-security-iam-password-policy-symbols.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,9 +10,9 @@ enabled: true
sql: >
SELECT arn as assetid
FROM ${magpie_schema}.awsaccount
WHERE (supplementaryconfiguration->>'passwordPolicy' IS NULL
OR supplementaryconfiguration->'passwordPolicy'->'requireSymbols' = 'false');
WHERE (supplementaryconfiguration->>'PasswordPolicy' IS NULL
OR supplementaryconfiguration->'PasswordPolicy'->'requireSymbols' = 'false');
remediation: >
Amend password policy to ensure passwords require at least one symbol.
remediationDocURLs: https://github.com/openraven/security-rules/wiki
version: 1.0.7
version: 1.0.8

0 comments on commit 0b59802

Please sign in to comment.