Jeremy Cooper 465559be50 Merge branch 'master' into feature/jc_MSOCI-2182_tfsec_S3_bucket_logging_ignores		3 gadi atpakaļ
..
005-iam	5cea7b75ca Updates tag for IAM tfsec Ignore Comments and legacy URL for IP list	3 gadi atpakaļ
006-account-standards	4524a12bc6 Updates tags for tfsec/checkov Ignore comments	3 gadi atpakaļ
006-account-standards-regional	1519a2cd30 Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 gadi atpakaļ
007-backups	1519a2cd30 Migrated most variables out of xdr-terraform-live and into xdr-terraform-modules	3 gadi atpakaļ
010-vpc-vmray	f13bb5c77c Updates modules for VPN update and employee_ips fixes	3 gadi atpakaļ
023-dns-resolver-instance	277c88dca3 Updates tfsec & checkov ignores + syntax updates	3 gadi atpakaļ
044-VMRay-Instances	7a4b5e6e65 Updates tfsec/chekov ignores \| S3 Enable Logging/Versioning	3 gadi atpakaļ
072-salt-master-inventory-role	4524a12bc6 Updates tags for tfsec/checkov Ignore comments	3 gadi atpakaļ
README.md	f6509ccb11 Adds a resolver instance to the VMRay VPC	3 gadi atpakaļ
account.hcl	5cea7b75ca Updates tag for IAM tfsec Ignore Comments and legacy URL for IP list	3 gadi atpakaļ

mdr-prod-malware

Account for hosting vmray and/or other malware detonation.

NOTE ON DNS

DNS resolvers exist in this account, in the vpc 010... However, the vpc relies on having dns resolvers to set the DHCP options.

So chicken/egg.

Here's how to do it.

1) Create the vpc with the default var.dns_servers. 2) Create the resolver 3) Update the VPC, overriding var.dns_servers with the IP from #2