Network misconfigurations

AWS EC2 instance allows public ingress access on TELNET port 23

Platform(s)
Compliance Frameworks
  • CCPA
  • ,
  • Data Security Posture Management (DSPM) Best Practices
  • ,
  • Mitre ATT&CK
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-171
  • ,
  • NIST 800-53
  • ,
  • Orca Best Practices
  • ,
  • UK Cyber Essentials

Description

TELNET port - 23 is used to gain CLI access to the machines. Allowing inbound traffic from all external IP addresses to TELNET port is vulnerable to communication sniffing, brute force attack and DoS attacks. It is a best practice to restrict access from specific IP addresses to port 23.