Network misconfigurations

AWS EC2 instance allows public ingress access on DNS port 53

Platform(s)
Compliance Frameworks
  • CCPA
    • ,
  • Data Security Posture Management (DSPM) Best Practices
    • ,
  • Mitre ATT&CK
    • ,
  • New Zealand Information Security Manual
    • ,
  • NIST 800-171
    • ,
  • NIST 800-53
    • ,
  • Orca Best Practices
    • ,
  • UK Cyber Essentials

Description

DNS port - 53 is used to query Domain Names to IP address. Allowing inbound traffic from all external IP addresses to DNS port can be vulnerable to DNS Hijacking, Cache Poisoning, DNS Tunnelling attack. It is a best practice to restrict access from known public DNS server to destination port 53.
Need help?

Get a free Security Risk Assessment. Start today

Demo the Orca Platform

In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Get a Demo