Network misconfigurations

Elastic Load Balancer (ELB) allows ingress access to SMTP port 25

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

SMTP port - 25 is used to send/receive emails. Allowing inbound traffic from all external IP addresses to TCP Port 25 can be vulnerable to DoS and reconnaissance attacks. It is a best practice to restrict access from specific IP addresses to port 25.
  • Recommended Mitigation

    It is recommended to replace the source IP of the rule with a specific IP address or delete the rule.