Network misconfigurations

Azure Network Security Group allows direct FTP access from the Internet

Platform(s)
Compliance Frameworks

Description

The File Transfer Protocol (FTP) is a standard communication protocol used for the transfer of computer files from a server to a client on a computer network. The FTP ports (20,21) are open on your virtual machine and allows all incoming traffic from the Internet. In order to keep security best practices, you should restrict access to be only from allowed IP addresses.

  • Recommended Mitigation

    Configure networking rule to allow incoming FTP traffic from allowed IP addresses only.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.