github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0131/Terraform.md

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/avd_docs/aws/ec2/AVD-AWS-0131/Terraform.md (about)

     1  
     2  Turn on encryption for all block devices
     3  
     4  ```hcl
     5  resource "aws_instance" "good_example" {
     6    ami = "ami-7f89a64f"
     7    instance_type = "t1.micro"
     8  
     9    root_block_device {
    10        encrypted = true
    11    }
    12  
    13    ebs_block_device {
    14      device_name = "/dev/sdg"
    15      volume_size = 5
    16      volume_type = "gp2"
    17      delete_on_termination = false
    18      encrypted = true
    19    }
    20  }
    21   
    22  ```
    23  
    24  #### Remediation Links
    25   - https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/instance#ebs-ephemeral-and-root-block-devices
    26