Network misconfigurations

Ensure no security groups allow ingress from 0.0.0.0/0 to SSH port (22)

Platform(s)
Compliance Frameworks
  • AWS CIS
    • ,
  • CCPA
    • ,
  • cis_8
    • ,
  • CPRA
    • ,
  • CSA CCM
    • ,
  • Data Security Posture Management (DSPM) Best Practices
    • ,
  • HITRUST
    • ,
  • iso_27001_2022
    • ,
  • iso_27002_2022
    • ,
  • Mitre ATT&CK
    • ,
  • mpa
    • ,
  • New Zealand Information Security Manual
    • ,
  • NIST 800-171
    • ,
  • NIST 800-53
    • ,
  • PDPA
    • ,
  • UK Cyber Essentials

Description

Security groups provide stateful filtering of ingress and egress network traffic to AWS resources. It is recommended that no security group allows unrestricted ingress access to remote server administration ports, such as SSH to port 22
Need help?

Get a free Security Risk Assessment. Start today

Personalized Demo

See Orca Security in Action

Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.

Get a Demo