Skip to content

Ensure 'Remote Access' Server Configuration Option is set to '0'

Description

The remote access option controls the execution of local stored procedures on remote servers or remote stored procedures on local server.

Rationale

Functionality can be abused to launch a Denial-of-Service (DoS) attack on remote servers by off-loading query processing to a target.

Applies To

  • Databases

Tags

This rule is applied when the following tags are present:

Tag With Value
secureclouddb/provider aws
secureclouddb/service rds
secureclouddb/engine sqlserver

Default Rule

const { checkServerSetting } = module
/**
 * @param {Object} databaseSettings - database settings object
 * @returns {boolean} true if 'remote access' is set to 0
 */
function validate(databaseSettings) {
    const success = checkServerSetting(databaseSettings, 'remote access', "0")

    return {
        success,
    }
}

validate(databaseSettings)