Network misconfigurations

Elastic Load Balancer (ELB) allows ingress access to SSH port 22

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

SSH (Secure Shell) port - 22 is used to get CLI access to Linux instances. Allowing inbound traffic from all external IP addresses to SSH port is vulnerable to banner grabbing and brute force attack. It is a best practice to restrict access from specific IP addresses to port 22.
  • Recommended Mitigation

    It is recommended to replace the source IP of the rule with a specific IP address or delete the rule.