ECS instance with SSH internet access

Network misconfigurations

ECS instance with SSH internet access

Platform(s)

Compliance Frameworks

AliCloud CIS
Brazilian General Data Protection (LGPD)
CCPA
cis_8
CPRA
Data Security Posture Management (DSPM) Best Practices
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
mpa
New Zealand Information Security Manual
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

A security group controls and limits the network access to your VPC or resource. SSH (port 22) allows remote connection to your instance. Therefore, it is not recommended to allow access from the internet to this port, and limit it using a security group with permission to specific addresses. By default, AliCloud enables SSH access in order to let you connect to your resource. We have found that the instance {AliCloudEcsInstance} enables unlimited remote connection access through the internet.

ECS instance with SSH internet access

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS