Data protection

SQL database instance allows unencrypted connections

Risk Level

Informational (4)

Platform(s)

Description

SQL database connections if successfully trapped (MITM); can reveal sensitive data like credentials, database queries, query outputs etc. It is recommended to enforce all incoming connections to SQL database instance to use SSL.
  • Recommended Mitigation

    Make sure instance IP configuration has the parameter 'requireSsl' enabled