AWS Security ChangesHomeSearch

AWS waf documentation change

Service: waf · 2025-08-16 · Documentation low

File: waf/latest/developerguide/enable-config.md

Summary

Expanded AWS Config requirements for DNS Firewall policy to include Route 53 ResolverRuleAssociation

Security assessment

Enhances security monitoring coverage by adding required resource type for configuration tracking, but doesn't address a specific vulnerability

Diff

diff --git a/waf/latest/developerguide/enable-config.md b/waf/latest/developerguide/enable-config.md
index 9091153dc..d2f991eea 100644
--- a//waf/latest/developerguide/enable-config.md
+++ b//waf/latest/developerguide/enable-config.md
@@ -39 +39 @@ If you don't want to enable AWS Config for all resources, then you must enable t
-     * **DNS Firewall policy** – Enable Config for the resource type EC2 VPC. 
+     * **DNS Firewall policy** – Enable Config for the resource type EC2 VPC and Amazon Route 53 ResolverRuleAssociation.