Network misconfigurations

AWS EC2 instance allows public ingress access on FTP port 20


FTP (File Transfer Protocol) port - 20 is used to setup FTP connection between the client and the server. Allowing inbound traffic from all external IP addresses to FTP port makes it vulnerable to FTP brute force attack, Packet Sniffing using Man-In-The-Middle (MITM) attack. It is a best practice to restrict access from specific IP addresses to port 20.