Network misconfigurations

AWS EC2 instance allows public ingress access on LDAP SSL port 636

Platform(s)
Compliance Frameworks
  • CCPA
  • ,
  • Data Security Posture Management (DSPM) Best Practices
  • ,
  • Mitre ATT&CK
  • ,
  • New Zealand Information Security Manual
  • ,
  • NIST 800-171
  • ,
  • NIST 800-53
  • ,
  • Orca Best Practices
  • ,
  • UK Cyber Essentials

Description

LDAP (Lightweight Directory Access Protocol) is used to connect to directory services for user authentication and retrieval. Allowing inbound traffic from external IPv4 addresses to LDAP ports can lead to attacks like DoS, Brute Force, Smurf and reconnaissance. It is a best practice to restrict the inbound traffic from specific addresses.