ALB Not Dropping Invalid Headers @ /terraform_examples/positive2.tf

**Checkmarx \(IaC\-Security\):** ALB Not Dropping Invalid Headers
**Applications:** [yael's application](https://deu.ast.checkmarx.net/applicationsAndProjects/applications?app=8af7454f-f6db-425f-a9a1-fb019c2f2cc7) 
**Checkmarx Project:** [Yoavast/CX\-AST](https://deu.ast.checkmarx.net/projects/41a8cb3d-c55b-472e-9595-36746c7958b7/overview?branch=main)
**Repository URL:** [https://github.com/Yoavast/CX\-AST](https://github.com/Yoavast/CX-AST)
**Branch:** main
**Severity:** MEDIUM
**State:** TO_VERIFY
**Status:** RECURRENT
**Scan ID:** [b70b7227\-90db\-4075\-88cb\-4c196077be97](https://deu.ast.checkmarx.net/projects/41a8cb3d-c55b-472e-9595-36746c7958b7/scans?id=b70b7227-90db-4075-88cb-4c196077be97&branch=main)


----
It's considered a best practice when using Application Load Balancers to drop invalid header fields



**Locations:**

**&nbsp;&nbsp;&nbsp;&nbsp;File:** [/terraform\_examples/positive2.tf\[49,0\]](https://github.com/Yoavast/CX-AST/blob/main/terraform_examples/positive2.tf#L49)
**&nbsp;&nbsp;&nbsp;&nbsp;Expected value:** aws_lb[{{test}}].drop_invalid_header_fields should be set to true
**&nbsp;&nbsp;&nbsp;&nbsp;Actual value:** aws_lb[{{test}}].drop_invalid_header_fields is missing
&nbsp;&nbsp;&nbsp;&nbsp;Review result in Checkmarx One: [ALB Not Dropping Invalid Headers](https://deu.ast.checkmarx.net/results/b70b7227-90db-4075-88cb-4c196077be97/41a8cb3d-c55b-472e-9595-36746c7958b7/kics?result-id=4DrT3DqHGTVxGBdxbO6I77oQXC4%3D)




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

ALB Not Dropping Invalid Headers @ /terraform_examples/positive2.tf #78

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

ALB Not Dropping Invalid Headers @ /terraform_examples/positive2.tf #78

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions