Network misconfigurations

Azure Network Security Group allows unrestricted SSH traffic from the Internet

Compliance Frameworks


SSH or Secure Shell or Secure Socket Shell, is a network protocol that gives users a secure way to access a computer over an unsecured network. There is a rule configured in {AzureNetworkSecurityGroup} network security group, that allows all incoming SSH traffic from the Internet. In order to keep security best practices and decrease the risk for malicious activities, you should restrict access to be only from allowed IP addresses.
  • Recommended Mitigation

    Configure networking rule to allow incoming SSH traffic from allowed IP addresses only.