Network misconfigurations

Security group allows internet access

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

A security group controls and limits the network access to your VPC or resource. The rules of a security group should be as fine-grained as possible. They should not allow wide-open internet access. We have found that the security group {AliCloudEcsSecurityGroup} enables access through the internet to unlimited IP addresses.
  • Recommended Mitigation

    Review your security group permissions and make sure they are all necessary and as fine-grained as possible.