AWS securityhub documentation change
Summary
Removed parameter configuration options for Redshift Serverless admin username checks and simplified control description.
Security assessment
The change removes customization options for admin username validation but maintains the check for the default 'admin' username. While this impacts security posture configuration, there is no evidence of addressing a specific vulnerability.
Diff
diff --git a/securityhub/latest/userguide/redshiftserverless-controls.md b/securityhub/latest/userguide/redshiftserverless-controls.md index 95b676d09..6ee5da713 100644 --- a//securityhub/latest/userguide/redshiftserverless-controls.md +++ b//securityhub/latest/userguide/redshiftserverless-controls.md @@ -117,5 +117 @@ For information about updating the encryption settings for an Amazon Redshift Se -**Parameters:** - -Parameter | Description | Type | Allowed custom values | Security Hub default value ----|---|---|---|--- -`validAdminUserNames` | A list of admin usernames that Redshift Serverless namespaces should use. The control generates a `FAILED` finding if a namespace uses an admin username that isn't in the list. The list cannot specify the default value, `admin`. | StringList (maximum of 6 items) | 1–6 valid admin usernames for Redshift Serverless namespaces. | No default value +**Parameters:** None @@ -123 +119 @@ Parameter | Description | Type | Allowed custom values | Security Hub default va -This control checks whether the admin username for an Amazon Redshift Serverless namespace is the default admin username, `admin`. The control fails if the admin username for the Redshift Serverless namespace is `admin`. You can optionally specify a list of admin usernames for the control to include in the evaluation. +This control checks whether the admin username for an Amazon Redshift Serverless namespace is the default admin username, `admin`. The control fails if the admin username for the Redshift Serverless namespace is `admin`.