Network misconfigurations

Security group allows internet access

Risk Level

Informational (4)

Compliance Frameworks


A security group controls and limits the network access to your VPC or resource. The rules of a security group should be as fine-grained as possible. They should not allow wide-open internet access. We have found that the security group {AliCloudEcsSecurityGroup} enables access through the internet to unlimited IP addresses.
  • Recommended Mitigation

    Review your security group permissions and make sure they are all necessary and as fine-grained as possible. It is recommended to remove any unnecessary rules in all security groups.