Network misconfigurations

AWS EC2 instance allows public ingress access on Redis port 6379

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Redis is a caching service to store application related information which is sensitive and confidential. Allowing inbound traffic from external IPv4 addresses to the Redis ports can lead to attacks like DoS, Brute Force, Smurf, and reconnaissance. It is a best practice to block public access, restrict the inbound traffic from specific addresses and make the connection secure.

  • Recommended Mitigation

    It is recommended to replace the source IP of the rule with a specific IP address or delete the rule.

Need help?

Get a free Security Risk Assessment. Start today

Orca Security Demo Demo the Orca Platform-> In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.