Data protection

SQL database instance allows unencrypted connections

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

SQL database connections if successfully trapped (MITM); can reveal sensitive data like credentials, database queries, query outputs etc. It is recommended to enforce all incoming connections to SQL database instance to use SSL.

  • Recommended Mitigation

    Make sure instance IP configuration has the parameter 'requireSsl' enabled.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.