Network misconfigurations

Security group allows SSH / RDP access from the internet

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

A security group controls and limits the network access to your VPC or resource. SSH (port 22) and RDP (port 3389) allow remote connection and control over a resource. Therefore, it is recommended not to allow access from the internet to these ports, and limit them using security groups. By default, AliCloud enables SSH access in order to let you connect to your resource. We have found that the security group {AliCloudEcsSecurityGroup} enables remote connection access through the internet.
  • Recommended Mitigation

    Review your security group permissions. If SSH or RDP access is required for your needs, limit it to a specific IP address.